Trillian and "U Awake" messages that I didn't send??? Security Issue!!!

[kijutsu]

So, very weird thing happened last night.

I have the LookOut Mobile Security program on my Droid 1.
Last night, at around 3am, Trillian decided that it would send out 7 or 8 random messages to a few friends on my facebook.

"*insert name here*, u awake?"

And one of my friends responded to it saying "Yeah, what's up?"

Basically, I'm trying to figure out where the hell these messages came from?
I keep my password changed on a regular basis on facebook and all of my passworded accounts for the most part. The LookOut mobile security thing hasn't come back with anything that is flagged for security issues.

The following programs are installed on my Droid:
AK Notepad
AndroidVNC
DroidForums
ES File Explorer
Faceook
IRSSI ConnectBot
iJobs JobSearch
Pandora
RealCalc
ROM Manager
ScanLife
SetCPU
Shazam
SubSonic
VEVO
WeatherBug
XiiaLive
LauncherPro

So nothing too crazy or flakey looking. I just want to make sure this doesn't happen again, I've already went through and changed passwords this morning after the incident occured. Is there a backdoor on these things that I'm not aware of?

 

[Backnblack]

Is there a backdoor on these things that I'm not aware of?

Only the developer would be able to tell you that....But I am sure they wouldn't admit it if there was...

 

[kijutsu]

Only the developer would be able to tell you that....But I am sure they wouldn't admit it if there was...

Any idea on where the crap these messages came from then?

It's almost as if they were entered locally, and there was no one in my house last night.

 

[Backnblack]

There have been some user report weird things like that but AFAIK nothing has ever been pin pointed as a cause.

 

[kijutsu]

There have been some user report weird things like that but AFAIK nothing has ever been pin pointed as a cause.

That's.. decidedly odd. I guess I'll just monitor the issue, and if it starts going wonky again I'll wipe the device and start fresh. It's about due for a wipe anyway.

 

[AngryHatter]

Your FB.
Did you click one of those threads so it would then message your friends list?
Since we tie our phone to the account, if the account gets garbage the phone participates in the garbage.

 

[kijutsu]

Your FB.
Did you click one of those threads so it would then message your friends list?
Since we tie our phone to the account, if the account gets garbage the phone participates in the garbage.

God no... I hate all those stupid 'apps' on facebook. I block 99.99999% of them.

 

[Hawaiian Princess]

let me add my situation:
my phone would send me notifications that my username and/or pswd is incorrect, it happened more than 3x. then I got an email saying IP Location (and it gave me the latitude) of Livingston NJ has access this account. WTH!! I also got phone alert indicating my username and/or pswd was incorrect on my business email. now im worried, chg my email acct, chg pswd, etc etc etc. YAHOO sends me an email saying I just shared my info with MOTOBLUR phone so again...WTH!!!
so anyway im working with VZW and local law enforcement to stop this none sense. virus or not, I've been reading all sorts of creepy things happening in Android world. never had issues when I had BB but I still wouldn't trade my Droid to go back....hmmmm

Aloha from Hawaii

 

[AngryHatter]

Your FB.
Did you click one of those threads so it would then message your friends list?
Since we tie our phone to the account, if the account gets garbage the phone participates in the garbage.

God no... I hate all those stupid 'apps' on facebook. I block 99.99999% of them.

Not a FB app. Amessage. A post.
Ever get a message from a friend, "Ha, I saw this video..."?
Those are malware.

 

[Martin030908]

id guess it originated from facebook.

btw, the lookout app (and any anti virus on android) are fluff. they're not going to catch malware.

*DroidForums app DOES*

 

[AngryHatter]

let me add my situation:
my phone would send me notifications that my username and/or pswd is incorrect, it happened more than 3x. then I got an email saying IP Location (and it gave me the latitude) of Livingston NJ has access this account. WTH!! I also got phone alert indicating my username and/or pswd was incorrect on my business email. now im worried, chg my email acct, chg pswd, etc etc etc. YAHOO sends me an email saying I just shared my info with MOTOBLUR phone so again...WTH!!!
so anyway im working with VZW and local law enforcement to stop this none sense. virus or not, I've been reading all sorts of creepy things happening in Android world. never had issues when I had BB but I still wouldn't trade my Droid to go back....hmmmm

Aloha from Hawaii

That IS you.
Livingston is Verizon. I got the same message and the same locale, I am SoCal - Verizon routes us west of the Mississippi people through there at times.
It said that someone IN Livingston logged into FB...YOU. Just the way the signal was proxied to FB from Verizon.

I never got any alerts nor any requests to change anything.
No money is gone and my contacts have not complained about messages.
Another time when I used the phone to get into FB I got the same email, but since I wasn't at home, i.e. my location had changed the ip changed as well.
And this time it was local.


Hi AngryHatter,

A new device named "a mobile device" was added to your Facebook account (Today at 10:39pm) from Livingston, NJ, US(IP=174.254.32.xxx). (Note: This location is based on information from your ISP or wireless provider.)

Tell me that isn't what you got.

 

[UNC]

Your FB.
Did you click one of those threads so it would then message your friends list?
Since we tie our phone to the account, if the account gets garbage the phone participates in the garbage.

God no... I hate all those stupid 'apps' on facebook. I block 99.99999% of them.

Not a FB app. Amessage. A post.
Ever get a message from a friend, "Ha, I saw this video..."?
Those are malware.

+1,000,000

I'd be willing to bet every last dollar that's what it was.
When you opened it, it didn't say "HAHA YOU MESSED UP!!!" They keep it discreet.

 

[Martin030908]

watch the language please.



*DroidForums app DOES*

 

[Hawaiian Princess]

I asked VZW specifically if this location was Verizon, the answer I got was NO. they ran that IP location and it wasn't verizon

let me add my situation:
my phone would send me notifications that my username and/or pswd is incorrect, it happened more than 3x. then I got an email saying IP Location (and it gave me the latitude) of Livingston NJ has access this account. WTH!! I also got phone alert indicating my username and/or pswd was incorrect on my business email. now im worried, chg my email acct, chg pswd, etc etc etc. YAHOO sends me an email saying I just shared my info with MOTOBLUR phone so again...WTH!!!
so anyway im working with VZW and local law enforcement to stop this none sense. virus or not, I've been reading all sorts of creepy things happening in Android world. never had issues when I had BB but I still wouldn't trade my Droid to go back....hmmmm

Aloha from Hawaii

That IS you.
Livingston is Verizon. I got the same message and the same locale, I am SoCal - Verizon routes us west of the Mississippi people through there at times.
It said that someone IN Livingston logged into FB...YOU. Just the way the signal was proxied to FB from Verizon.

I never got any alerts nor any requests to change anything.
No money is gone and my contacts have not complained about messages.
Another time when I used the phone to get into FB I got the same email, but since I wasn't at home, i.e. my location had changed the ip changed as well.
And this time it was local.


Hi AngryHatter,

A new device named "a mobile device" was added to your Facebook account (Today at 10:39pm) from Livingston, NJ, US(IP=174.254.32.xxx). (Note: This location is based on information from your ISP or wireless provider.)

Tell me that isn't what you got.

Aloha from Hawaii

 

[AngryHatter]

I asked VZW specifically if this location was Verizon, the answer I got was NO. they ran that IP location and it wasn't verizon

let me add my situation:
my phone would send me notifications that my username and/or pswd is incorrect, it happened more than 3x. then I got an email saying IP Location (and it gave me the latitude) of Livingston NJ has access this account. WTH!! I also got phone alert indicating my username and/or pswd was incorrect on my business email. now im worried, chg my email acct, chg pswd, etc etc etc. YAHOO sends me an email saying I just shared my info with MOTOBLUR phone so again...WTH!!!
so anyway im working with VZW and local law enforcement to stop this none sense. virus or not, I've been reading all sorts of creepy things happening in Android world. never had issues when I had BB but I still wouldn't trade my Droid to go back....hmmmm

Aloha from Hawaii

That IS you.
Livingston is Verizon. I got the same message and the same locale, I am SoCal - Verizon routes us west of the Mississippi people through there at times.
It said that someone IN Livingston logged into FB...YOU. Just the way the signal was proxied to FB from Verizon.

I never got any alerts nor any requests to change anything.
No money is gone and my contacts have not complained about messages.
Another time when I used the phone to get into FB I got the same email, but since I wasn't at home, i.e. my location had changed the ip changed as well.
And this time it was local.


Hi AngryHatter,

A new device named "a mobile device" was added to your Facebook account (Today at 10:39pm) from Livingston, NJ, US(IP=174.254.32.xxx). (Note: This location is based on information from your ISP or wireless provider.)

Tell me that isn't what you got.

Aloha from Hawaii

Verizon employees, at least the lower tier people are not well versed. Just look at the message/ip that I got and tell me it's not the same?
It's a login to FB from your phone.
You SHOULD get that email every time you use teh FB phone app, unless you turn that notification off.