- Joined
- Apr 14, 2006
- Messages
- 23,166
I am informed that I-95 is like some giant snow blocker, and I live south of it, so I'm expecting rain.
I am informed that I-95 is like some giant snow blocker, and I live south of it, so I'm expecting rain.
Spent most of the day dealing with the events from a recent hack.
Outlook was comprimised, possibly by a trojan that intercepted a Web-service call, or perhaps gained access through the lack of MFA and a backdoor to my password reset through a password reset link.
I was warned to add MFA a day prior, and should have listened.
Got all my data by adding an email alias into the webApp of my email client. I removed that, then reset my password a few times, once I was confident I regained control I added 2FA and reset my password a couple more times.
The multiple password resets is essential when the hacker is in progress doing his attacks... this was the case. I had went to bed, and at 10pm the hacking had begun. I've always had people try and hack my email, but somehow when I logged into it from my media center pc...it got hacked. That was the first (AND LAST) time I log into any personal accounts on that machine. I will be doing a DISKPART CLEAN on the system drive, and thoroughly scanning each of the drives 1 by 1 for viruses with multiple virus detection tools (SUGGESTIONS WELCOME) for now the system is disconnected, along with the external HDD that are connected.
Then the fun and fallout began. They got mad when they lost access to my email after I was able to remove the alias THEN reset the password THEN add MFA in that order. Had I done the reset first, they probably could have done a little more damage... but it doesn't stop there.
They managed to blacklist a few of the sites they were trying to gain access to in my junk email domain blacklisting, one of them being my banking institution...my CORE banking institution.
Sooo... they got in. They tried to do a transfer and successfully did... from ONE account, to another. I did not initiate this and never have transferred money that direction of those two accounts.
So new account numbers for everything there.
Spent most of the morning battling spam emails as I was signed up for 1000s of welcome letters into my email inbox, junk, etc. It amounted to over 15,000 spam emails this morning. THEN, I started getting spam phone calls. I got about a dozen today, morning to mid day then they slowed to a hault.
Needless to say about 25 yrs of old emails on my server were downloaded. FB account was hacked, they logged in through a one time password reset link and linked an instagram account after removing my instagram. My guess is that gave them some sort of extra control. So now that is locked. They got my son's roblox account as well. That one is still locked and I am trying to get it unlocked. They blacklisted a few of the providers domains in my webmail client so I removed those and am still having issues.
Argh.
On top of it, we leave for a pretty signifigant trip tomorrow. SO far, not any finanical damage. I have credit monitoring, SS, Passport, DL...all are on high alert monitoring right now in case the damage and threats get worse.
make sure all your accounts have MFA. and then NEVER lose or get your phone stolen, or you will have a tough time recovering.
Spent most of the day dealing with the events from a recent hack.
Outlook was comprimised, possibly by a trojan that intercepted a Web-service call, or perhaps gained access through the lack of MFA and a backdoor to my password reset through a password reset link.
I was warned to add MFA a day prior, and should have listened.
Got all my data by adding an email alias into the webApp of my email client. I removed that, then reset my password a few times, once I was confident I regained control I added 2FA and reset my password a couple more times.
The multiple password resets is essential when the hacker is in progress doing his attacks... this was the case. I had went to bed, and at 10pm the hacking had begun. I've always had people try and hack my email, but somehow when I logged into it from my media center pc...it got hacked. That was the first (AND LAST) time I log into any personal accounts on that machine. I will be doing a DISKPART CLEAN on the system drive, and thoroughly scanning each of the drives 1 by 1 for viruses with multiple virus detection tools (SUGGESTIONS WELCOME) for now the system is disconnected, along with the external HDD that are connected.
Then the fun and fallout began. They got mad when they lost access to my email after I was able to remove the alias THEN reset the password THEN add MFA in that order. Had I done the reset first, they probably could have done a little more damage... but it doesn't stop there.
They managed to blacklist a few of the sites they were trying to gain access to in my junk email domain blacklisting, one of them being my banking institution...my CORE banking institution.
Sooo... they got in. They tried to do a transfer and successfully did... from ONE account, to another. I did not initiate this and never have transferred money that direction of those two accounts.
So new account numbers for everything there.
Spent most of the morning battling spam emails as I was signed up for 1000s of welcome letters into my email inbox, junk, etc. It amounted to over 15,000 spam emails this morning. THEN, I started getting spam phone calls. I got about a dozen today, morning to mid day then they slowed to a hault.
Needless to say about 25 yrs of old emails on my server were downloaded. FB account was hacked, they logged in through a one time password reset link and linked an instagram account after removing my instagram. My guess is that gave them some sort of extra control. So now that is locked. They got my son's roblox account as well. That one is still locked and I am trying to get it unlocked. They blacklisted a few of the providers domains in my webmail client so I removed those and am still having issues.
Argh.
On top of it, we leave for a pretty signifigant trip tomorrow. SO far, not any finanical damage. I have credit monitoring, SS, Passport, DL...all are on high alert monitoring right now in case the damage and threats get worse.
make sure all your accounts have MFA. and then NEVER lose or get your phone stolen, or you will have a tough time recovering.
I can't imagine a plastic snow shovel lasting very long.