Path: csiph.com!weretis.net!feeder8.news.weretis.net!reader5.news.weretis.net!news.solani.org!.POSTED!not-for-mail From: Richmond Newsgroups: alt.comp.software.thunderbird Subject: Re: Fake email Date: Sat, 16 May 2026 11:15:38 +0100 Organization: Frantic Message-ID: <827bp3zmlx.fsf@example.com> References: <10u78tb$8n14$1@dont-email.me> <10u7kgb$d6gj$1@dont-email.me> <10u7l8m$df3c$1@dont-email.me> <1kneci37up2hh$.dlg@v.nguard.lh> <0pildmx07m.ln2@Telcontar.valinor> MIME-Version: 1.0 Content-Type: text/plain Injection-Info: solani.org; logging-data="9752"; mail-complaints-to="abuse@news.solani.org" User-Agent: Gnus/5.13 (Gnus v5.13) Cancel-Lock: sha1:EwC0D/2dRu5CToGwjRibESyNtk8= sha1:TilXmQksk0zC2ZLBKpD2hyr7bC0= X-User-ID: eJwFwQkBwDAIA0BLlCcFOZQF/xJ2F4aDuY6Ax8Z6z2kGWynDvraZTwjVshculC9RBWlbavEHLicRXw== Xref: csiph.com alt.comp.software.thunderbird:20490 Before deciding what can be done about this sort of thing, don't we need to know how the email was hacked? Did the owner have 2FA? probably not. If the attacker got the password then there is no way to tell except from the content. I think phoning is a waste of time as the owner probably already knows because he can't access his account and he has received several calls already. But then it's like not phoning the fire brigade because you think someone else has.