I opened a message from a friend's eddress and it was from a spammer. I contacted friend who didn't realize what had happened but did a complete virus scan and found nothing. There was a long list of eddresses in the "To" box. So the message was undoubtedly from spyware that had commandeered their contacts list. I found no viruses on my computer but I'm worried. I blocked my friend's eddress and they are planning to get a new eddress. 1. Is there a chance that this spammer can get control of my contacts list this way? 2. Is there anything else I should do? 3. Does "hiding" eddresses in the "BCC" box (instead of the "To" or "CC" box) help to prevent spammers from doing this or is that useless?