Glad you caught this so quickly and avoided a much bigger problem. I have alerts setup for any transaction $1.00 or more (or whatever the minimum is) and receive SMS and e-mail alerts the moment a transaction happens. Setup alerts on all financial accounts, particularly on bank and credit card accounts.Running regular checks of your devices with multiple scanners (Malwarebytes, ESET online scanner, Emsisoft Emergency Kit, TDSSKILLER, etc) is the best way to make sure you are clean. There are several out there that install "key loggers" on your computer or device to intercept your passwords as you type them in. Regularly check your computer for malware/viruses.Be wary of sites that you sign up for and what information you provide.Use an authentication like Google Authenticator and use SMS as a last resort. Setup 2FA on every account that you can, especially your e-mail accounts.Using the password generator in the password manager is the best approach if at all possible. Use a password manager and use secure passwords.With all of the data breaches that have been happening over the last few years this is unfortunately going to become more and more common. In fact, one of my clients had this happen last week to hide a credit card transaction of over $4,000. These are commonly referred to as "mail bombs" and I have seen several of these with different clients over the years. There needs to be no negotiation with terrorists.Īt least, that's easy to say when it isn't your job/secrets/memories/records on the line. If you pay, they will grow like a cancer, extorting more and more people with better, more insidious tools they can afford to develop. On top of the dilemma of "deciding" other people's outstanding ransoms by killing the point of contact, there's-I think-a greater responsibility to not further finance and enable these thieves. Did I lose them their files forever, or save them from losing an extra $7,000? There's a significant chance the ransomers wouldn't have lifted a finger to help them after the bitcoin cleared. On the other hand, there is zero guarantee that the ransomers would have returned a valid decryption key-you have to pay them $7,000 entirely on faith. On one hand, there may have been people trying to pay ransoms for their data who had their messages lost in my deluge of emails. Hopefully keep this from happening again! Just finished putting 2FA on every account that allows it. So then I'd get an email from a random russian travel site, and our filters let it through.Įither way - we got the order cancelled before it shipped, and my email is back to normal - albeit different passwords.Īnd I honestly thought about shipping a box of dog crap to that address (probably a vacant house) but I decided against mailing bio-hazardous waste.Įither way - if you see something suspicious - investigate!Įdit: Thanks for all the great input everyone. I still haven't heard from their security team HOW the breach happened (If they got into my amazon account by password, or did a "one time login" through my email.) The spam made it through our spam filter because the way this spam bomb was conducted, they use bots to go out to "legitimate" websites and sign your email up for subscription etc. I immediately changed my password and called Amazon. Then I checked - sure enough those cheeky bastards had archived the order too. I logged into my Amazon account, but didn't see an order. I started going through the 700+ emails one by one until I found an email from confirming my purchase of 5 PC graphics cards (over $1000). Turns out, scammers do this to bury legitimate emails from you, most often to hide purchases. So I googled "suddenly getting lots of spam". After a different situation that happened a few months ago, I've learned that things like this aren't random. They were bypassing the spam filter (more on that later). By that point I have over 700 emails in my inbox. And the traffic was putting a strain on our mail server so they disabled my account. I called one of our IT guys and he confirmed it was just me. Many of them had russian or chinese words, but random. Last week on Tuesday morning I was sitting at my desk and suddenly started getting emails. I'm not 100% sure how well this fits here (it is financial), but I wanted to warn as many people as possible. Here, please treat others with respect, stay on-topic, and avoid self-promotion.Īlways do your own research before acting on any information or advice that you read on Reddit. Get your financial house in order, learn how to better manage your money, and invest for your future. Banking Megathread: FDIC, NCUA, and your cash.Private communication is not safe on Reddit. Scam alert: Ignore any private messages or chat requests.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |