I need some one to confirm my understanding of this.

There is nothing to indicate that this came from or through Pixies. This was a bug that came up the Yahoo toilet. Only because so many of the people on many of our buddy lists happen to be Pixies and we talk to each other WITHOUT using Yahoo IM did we become aware if it as quickly as we did.

My Yahoo nick is not the same as here at Pixies and is not listed at Pixies. Therefore it seems they had only a list of Yahoo nicks and turned loose a virus that suckered us into entering the password that matches the name. Because the link came from people that we trust explicitly and appeared (at first glance ) to be structure of Yahoo (also with a level of confidence), we slide right down the drain. The fact that any ‘reply’ back to the (supposed) sender was derailed leads me to believe it wants to be very covert.

We don’t know yet, what is being done with this particular collection of nick’s WITH passwords, but I would think it only enables them to apply them to additional Yahoo services using that nick and password.

My understanding to date, is that it was sent ONLY as an offline IM. As soon as we opened our IM, it had access to our buddy list. I will post the person, date and time I received the first message when I get home tonight and we should be able to make a map of it’s travels through our group.

__________________