Hacked Via WebCam

Discussion in 'other anti-malware software' started by TerryWood, Jul 13, 2018.

  1. TerryWood

    TerryWood Registered Member

    Joined:
    Jan 14, 2006
    Posts:
    1,037
    Hi @ Wilders

    It appears that I have been hacked via webcam + keylogger and the contents of my contact folder stolen.

    I am using Win 10 x64 latest update, + BitDefender Free, + NoVirus Thanks OSArmor, + EXE Radar Pro V4.0, + Keyscrambler Pro.

    On Demand:- MBAM, + HitmanPro 3.8 Free, + adwcleaner.

    My questions are these:-

    1) Would you have expected that this security set up is adequate to protect against hacking as described above.

    2) Is there any security software that I need to add?


    Thanks

    Terry
     
  2. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    4,041
    Location:
    Nebraska, USA
    1. Why do you suspect you were hacked by both the webcam and via a keylogger?
    2. How long between "clean" on-demand scans with MBAM, HitmanPro, and adwcleaner and this infections.
    3. Do the on-demand scans now find any malware?

    No, I would not expected the compromise with that security setup but it must be noted that even the best security can easily be thwarted if the user opens the door and lets the bad guy in. How? Typically by clicking on some unsolicited download, attachments, popup or link.

    Are you the only user of this computer?
     
  3. syrinx

    syrinx Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    427
  4. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    4,041
    Location:
    Nebraska, USA
    Yeah. So we need more information - like an answer to my question #1 above.
     
  5. TerryWood

    TerryWood Registered Member

    Joined:
    Jan 14, 2006
    Posts:
    1,037
    Hi @ Wilders (Bill_Bright, Syrinx)

    Syrinx's link was bang to rights. Almost an identical email I received to the one in the link. It mentioned a webcam + keylogger. Plus a password of mine that is correct + having copied my "contacts folder". What is surprising is that I us a VPN (SetupVPN).

    Hope this helps for further comment.

    Terry
     
  6. mekelek

    mekelek Registered Member

    Joined:
    May 5, 2017
    Posts:
    518
    Location:
    Hungary
    so you didn't get hacked, you just got SE-d into thinking they hacked you.
    your contact folder was probably synced onto some service that you used and they breached it using your password from a database dump.

    you should get a password manager and start using randomly generated passwords for each account.
    Where to start: Bitwarden, Lastpass, Enpass, KeePass
     
  7. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    4,041
    Location:
    Nebraska, USA
    I agree with using a password manager. I have over 300 passwords. But I only have to remember 1. The one to my password manager. I use SplashID mainly because it is what I started with 20+ years ago as it let me sync my PC with my Palm PDA.

    Make sure Windows and your security are fully updated. And don't be "click-happy" on unsolicited downloads, links, attachments and popups.
     
  8. wshrugged

    wshrugged Registered Member

    Joined:
    Jun 12, 2009
    Posts:
    266
    It might have nothing to do with the issue you faced but consider whether your choice of which VPN provider to use was made in your own best interest.

    https://setupvpn.com/eula/
     
  9. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    4,041
    Location:
    Nebraska, USA
    That's pretty standard. The copying of contacts, and revealing passwords, however, would not fall into any of those EULA terms.
     
  10. bidd

    bidd Guest

    Yes that's the one currently doing the rounds, I even received it myself yesterday though immediately new it was a scam, oddly enough the password they said they had was one used before the Avast forum attack in late 2014 which relates with some other complaints by members on the Avast forum whom also said it was their Avast password used in the scam.

    The email scam going around is the one I've pasted below...

    I am aware, ( REMOVED) , is your password. you don't know me and you are most likely thinking why you're getting this e mail, correct?

    The answer is, I installed a malware on the adult video clips (porn) and guess what, you visited this site to experience fun (you know what I mean). While you were watching videos, your browser started operating as a Rdp (Remote desktop) having a key logger which gave me access to your display screen and webcam. Just after that, my software program collected every one of your contacts from messenger, social networks, as well as email.

    What exactly did I do?
    I made a double-screen video. First part displays the video you were watching (you've got a good taste lmao), and 2nd part shows the recording of your cam.


    Exactly what should you do?
    Well, in my opinion, $1900 is a reasonable price tag for our little secret. You'll make the payment through Bitcoin (if you don't know this, search "how to buy bitcoin" in google).


    BTC ADDRESS: 1CE3Qk4aWoxEnXVTjQgFeBsmo4Cw3AAgXA
    (It is CASE sensitive, so copy and paste it)


    Notice:
    You have one day in order to make the payment. (I have a unique pixel in this email message, and at this moment I know that you've read through this message). If I don't receive the Bitcoins, I will certainly send out your video to all of your contacts including family members, co-workers, and so on. nevertheless, if I do get paid, I'll erase the video immediately. If you really want proof, reply with "yes!" and I definitely will send out your video to your 15 friends. It is a non-negotiable offer, so kindly do not ruin my time and yours by responding to this email.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.