Pages:
Author

Topic: I GOT HACKED AND LOST 1 MILLION - page 3. (Read 25047 times)

legendary
Activity: 3164
Merit: 2258
I fix broken miners. And make holes in teeth :-)
December 27, 2018, 11:59:50 PM
#88
By the way if you're going to use a windows box forget using standard AV tools. Microsoft's Defender is useless, as is most of the normal AV tools. A bit of recompiling and a little salt and an executable with a full reverse command shell can be installed in no time.

Get a real EDR and AETD tool like SentinelOne, or Crowdstrike. They can usually spot fileless tricks in about 6-10 seconds, giving the attacker a pretty limited window to get a persistent session going. Granted they could loop but your system should scream about thousands of attacks being killed a minute, if you're not monitoring your system you're fucked.

Better option: 10 year old burner PC. Best option Kali type burner OS.
hero member
Activity: 3010
Merit: 794
December 27, 2018, 10:29:03 PM
#87

Yes - be careful with that one!! I checked it and it is the same malware as before.

Ouch..  Angry

Then the detection is pretty misleading...

Yea, I wouldn't 100% trust VirusTotal when it comes to checking these. They've been wrong in the past

The code within the software could be more or less unprecedented to the virus detection systems
Once issues been experienced in the past is hard to entrust fully when relying to these services. Its pretty misleading indeed so its much better to be careful next time.
Sad to hear out on OP's loss. recovery would be impossible even you do know some information.
legendary
Activity: 2506
Merit: 1113
There's no need to be upset
December 27, 2018, 03:18:14 PM
#87
sorry for your loss.

Have you consider using a VPN?
(I guess it would have helped in this situation but can anybody tell me if it wouldn't?)

that's why it is a must to have different passwords not stored online for the wallets.
Really hope you can make the money back
newbie
Activity: 2
Merit: 0
December 27, 2018, 02:37:19 PM
#86
Hello!

I´m very sorry to hear this bad News about your Coins.
I hope, you can find here some help! You will see three Link´s "To report Internet Fraud".

https://badbitcoin.org/index.htm

Good Luck Buddy!
Best regards,
Evgen Bogdan
hero member
Activity: 1582
Merit: 759
December 26, 2018, 02:10:27 PM
#85

Yes - be careful with that one!! I checked it and it is the same malware as before.

Ouch..  Angry

Then the detection is pretty misleading...

Yea, I wouldn't 100% trust VirusTotal when it comes to checking these. They've been wrong in the past

The code within the software could be more or less unprecedented to the virus detection systems
member
Activity: 124
Merit: 10
December 26, 2018, 10:01:26 AM
#84
Is OP said that he hacked via RD Connection?.
Are you using Dynamic or Static IP?
When you look over your PC is your computer log out itself?
To get the password is easy especially you download Virus wallet and your PC connected to Microsoft account. I think mobile connectivity more secure than home cable because the IP always changed every certain time because sometimes the cellular connection lost the signal. And make sure your firewall not too open to all ports.

For note, I'm an ignorant person and too paranoid about my security. I'm just installing KIS and local antivirus (Sometimes local more dangerous). And install every wallet in one computer and always online.
jr. member
Activity: 89
Merit: 1
December 25, 2018, 02:44:28 PM
#83

Yes - be careful with that one!! I checked it and it is the same malware as before.

Ouch..  Angry

Then the detection is pretty misleading...
sr. member
Activity: 437
Merit: 255
December 25, 2018, 02:17:16 PM
#82

Yes - be careful with that one!! I checked it and it is the same malware as before.
jr. member
Activity: 89
Merit: 1
December 25, 2018, 01:12:06 PM
#81
sr. member
Activity: 437
Merit: 255
December 23, 2018, 08:47:10 AM
#80
this is funny (or not)
Namecheap never reacted to the ticket. GitHub seamed to have taken down the repository for some days. But now its up and running again.  Huh

I think that for some people holidays have started a little earlier, at this time of year support may be slower than usual. Have you followed Namecheap rules regarding the abuse reporting? Maybe they consider your case as Fraud scheme and they will not assist you if report is not made to https://complaint.ic3.gov .

I have to admit it's strange that GitHub is reacted in that way, maybe they remove them, but they find a way to get back. Only thing we can do is to report them again.
yes probably - it would be a mess if another person would become victim of this fraud


Is there any progress in the investigation of your case?
yes there is - I will post the progress when it will not affect the investigation anymore
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
December 23, 2018, 06:50:02 AM
#79
this is funny (or not)
Namecheap never reacted to the ticket. GitHub seamed to have taken down the repository for some days. But now its up and running again.  Huh

I think that for some people holidays have started a little earlier, at this time of year support may be slower than usual. Have you followed Namecheap rules regarding the abuse reporting? Maybe they consider your case as Fraud scheme and they will not assist you if report is not made to https://complaint.ic3.gov .

I have to admit it's strange that GitHub is reacted in that way, maybe they remove them, but they find a way to get back. Only thing we can do is to report them again.

Is there any progress in the investigation of your case?
sr. member
Activity: 437
Merit: 255
December 23, 2018, 05:55:29 AM
#78
this is funny (or not)

Namecheap never reacted to the ticket. GitHub seamed to have taken down the repository for some days. But now its up and running again.  Huh

legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
December 19, 2018, 06:25:53 AM
#77
And the scammer is online again:

http://www.electrumdiamond.org/

I just want to know how domain registry services and international police can allow these criminals to go on with their activities.

It seems that cryptocurrency is not at the top of their list of priorities for now. If we consider how much total crypto market worth today, it is clear that they have some other priorities which generate much larger sums of money in terms of criminal activities. In addition, there is also the problem of education - to fight these threats we need educated people in the right places. One of the benefits of the Internet is anonymity, and we can see some bad people use that - they just switch form one hosting/country to another.

I report this site to : https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en

Let's shut them down as soon as possible Angry
hero member
Activity: 1582
Merit: 759
December 19, 2018, 01:04:24 AM
#76
And the scammer is online again:

http://www.electrumdiamond.org/

I just want to know how domain registry services and international police can allow these criminals to go on with their activities.
Yup I also see it... am also wondering how this continues to happen.

Also, I was just thinking, If we took the complaint to the GitHub team, is there a chance that they could take down the malware hosted on their website alongside with the criminal's account?

Not only that, but their registrar NameCheap & GoDaddy may be able to provide more information (https://who.is/whois/btcd.io)

Namecheap Abuse: https://www.namecheap.com/support/knowledgebase/article.aspx/9196/5/how-and-where-can-i-file-abuse-complaints

GoDaddy Abuse: https://godaddy.com/help/reporting-abuse-27154

Github Abuse: https://github.com/contact/report-abuse

GH at the very least will remove the repo.
copper member
Activity: 2198
Merit: 1837
🌀 Cosmic Casino
December 18, 2018, 09:17:00 PM
#75
And the scammer is online again:

http://www.electrumdiamond.org/

I just want to know how domain registry services and international police can allow these criminals to go on with their activities.
Yup I also see it... am also wondering how this continues to happen.

Also, I was just thinking, If we took the complaint to the GitHub team, is there a chance that they could take down the malware hosted on their website alongside with the criminal's account?
sr. member
Activity: 437
Merit: 255
December 18, 2018, 06:33:18 PM
#74
And the scammer is online again:

http://www.electrumdiamond.org/

I just want to know how domain registry services and international police can allow these criminals to go on with their activities.
newbie
Activity: 14
Merit: 15
December 16, 2018, 01:33:52 PM
#74
Thanks for sharing the guide... This is new to me and I am glad I learned it from here. Better to take some time figuring out how to be secure than being sorry.
Yesterday I just did a google search on how people claim forks especially the recent Bitcoin Cash Forks and realized how so many people are vulnerable to getting hacked.

Incidents have been there where fake websites claiming to be official sites while offering fake wallets for download pop up out of nowhere. sometimes someone claiming to give a guide of how o claim the coins give a link to a fake wallet/fake website. Hopefully, will people get sensitized about such dirty tricks.

I am glad that you learnt something new. I do understand that some security measures may seem painstaking and one might be tempted to think that he/she is hack-proof as I normally think of myself sometimes Grin but i don't know what lies ahead so its better I take the pains for something than lose all my gains for nothing.
legendary
Activity: 1372
Merit: 1252
December 14, 2018, 09:29:38 PM
#73
copper member
Activity: 80
Merit: 1
December 14, 2018, 06:44:52 PM
#73
Sorry for your loss OP. I hope your doing well.  Cry
copper member
Activity: 2198
Merit: 1837
🌀 Cosmic Casino
December 14, 2018, 05:01:14 PM
#72


Thanks for sharing the guide... This is new to me and I am glad I learned it from here. Better to take some time figuring out how to be secure than being sorry.
Yesterday I just did a google search on how people claim forks especially the recent Bitcoin Cash Forks and realized how so many people are vulnerable to getting hacked.

Incidents have been there where fake websites claiming to be official sites while offering fake wallets for download pop up out of nowhere. sometimes someone claiming to give a guide of how o claim the coins give a link to a fake wallet/fake website. Hopefully, will people get sensitized about such dirty tricks.
Pages:
Jump to: