Hi, I'm an IT systems admin and developer for many years, and I'm embarrassed to say my yahoo.com email address was recently spoofed. I'd like to get some idea of how this happened, and what could be done to prevent it in the future?
Everybody on my yahoo.com contact list got a message with no subject and an evil looking link. The header info shows it came from yahoo.com, and in fact it actually did, as the mails are in my Sent items. The mails were sent in the middle of the night, when all my computers were off.
AV full scans on all computers showed no problems.
Windows Defender full scans picked up nothing.
I've never clicked on any suspicious links in email.
I've never (knowingly) been phished.
I'm above-average paranoid and security conscious.
The only X factors might be that I must use Yahoo IM for work, which uses the same login as the email. And also I logon to this account using my iPhone.
Please let me know if anyone has any thoughts on this.