TL;DR: This post is meant to raise awareness and to incentive everybody to take your online security serious. I am a software developer and I really know how these things work. It happend to me anyway due to a mixture of laziness and arrogance I guess. Dont be like me !
First thing that caught my attention was that I received a bunch of mails from an exchange I never used before. They said that I successfully verified and funded my account. I did not pay much attention to it because I get these kind of scams, where they pretend to be support of Paypal, Amazon or some exchange, all the time. But when I looked into it in the evening again, it started to worry me. The emails were not tagged as spam by my email provider. The sender address seemed legit and the quality of the mails was very good for being fake. So I started checking my accounts and it hit me like a stroke ...
As I found out, the attack started already 6 days ago. They were inside all my email accounts and deleted all messages created by their activities. They were systematically overtaking and draining different accounts of mine and using cracked accounts to crack others. They basically got access to everything which was not secured via a 2FA application. Accounts with no 2FA or 2FA via SMS or mail were cracked.
But how was this even possible ? The answer is laziness and arrogance of my side. I was using an old Win7 installation and the whole computer was full of all kinds of trash. I always wanted to reinstall the system but never did. One day before the attack begun was was to cheap to buy a partition manager for 30 bugs and used several free tools from questionable sources instead...
... Hey, I am a PRO and absolutely able to distinguish between freeware and malware ... what could possibly go wrong ?
This is probably how they got in and the old unupdated system full of security holes made it easy to exploit.
After being cheap and arrogant infected my system with malware, laziness came into place. Of course I used the same few passwords over and over again. In the beginning, when I created most accounts, I was motivated to type the password every time. But after a while a lot of them somehow ended up being saved in my browser. For some more sensitive accounts I kept typing the password each time and not saving it but 2FA is a real pain in the ass, so I only had it on my most important accounts ... Needles to say that my saved passwords which included email accounts were the perfect collection for the attacker to start with and from that it was possible to recover the rest.
Everything which was not 2FA application secured was cracked. 2FA email of course was useless because they had my email accounts. 2FA SMS which I had in one account was cracked by adding a new phone number which of course was theirs. First they emptied browser connected wallets like e.g. Metamask, DEX's and even the BAT's from my Brave browser. Afterwards they started draining accounts like online banking, Paypal, Amazon and so on. In the end they even tried to contact support of 2FA secured accounts and tried to remove the 2FA. Luckily, I noticed whats going on before that could happen.
My total loss is a bit more than 1k$ but I think I still got away with a blue eye. It could have been a lot worse ... The accounts protected by a 2FA application, Ledger secured wallets and also my Monero GUI hot wallet withstood the attack. Big shoutout to the devs of those apps/devices !
Now my System is freshly set up, perfectly updated and clean. I will never install anything from questionable source on this system. I will never save a password in my browser again. All my accounts have different passwords now. Basically all my accounts are now secured via 2FA application. This also includes my email accounts where I had neglected security so badly before. Hot-wallets of mine are not longer connected to my browser via Metamask or anything and I also ordered an additional Ledger for my "less important" hot wallets ...
... I had to pay more than 1k$ to understand this necessity. Dont be like me and realize it for free.
I hope this story is an Inspiration for some of you to close some holes. Enable 2FA with applications like FreeOTP, Google Authenticator or Authy. Use different passwords for different accounts. Dont save passwords in your browser. Dont leave Hot wallets connected to your browser. Secure especially your email accounts properly. Update your System. Dont install trash from questionable sources.
EDIT: The most ugly thing is that feeling of paranoia which I have since all that ... I keep checking my accounts the whole day.
[link] [comments]
You can get bonuses upto $100 FREE BONUS when you:
π° Install these recommended apps:
π² SocialGood - 100% Crypto Back on Everyday Shopping
π² xPortal - The DeFi For The Next Billion
π² CryptoTab Browser - Lightweight, fast, and ready to mine!
π° Register on these recommended exchanges:
π‘ Binanceπ‘ Bitfinexπ‘ Bitmartπ‘ Bittrexπ‘ Bitget
π‘ CoinExπ‘ Crypto.comπ‘ Gate.ioπ‘ Huobiπ‘ Kucoin.
Comments