While I'm working on reviving a couple old communities and their ideas that could work really well with @commentrewarder. I thought I'd start with asking a general question regarding hacking.
A lot of people, I'd say majority, still don't use safety measures in this day and age and live in the "risk" zone of potential leaks getting them hacked one way or another. This usually happens by using the same email and password on many different websites, one of them gets hacked it opens up another attack vector for thefts to occur on other sites.
I've had to learn this lesson the hard way, fortunately before I started my journey here on this chain.
My account on those Bitcoin forums that were popular back in the day was hacked along with some other crypto sites I used the same login on. While this didn't directly affect my wallet, it affected my reputation quite badly while I was trying to become active and grow a presence in the space. The hackers who got hold of my account started using it to steal other people's crypto in some kind of peer2peer loaning sections of the forum and then never return the funds. This then caused some other people to not trust "the real me" and my window of opportunities became quite blocked over time.
Thankfully this caused me to stop being so lazy and make sure I use strong and uniquely generated passwords for all sites I use, especially those I trust. For other things I have a wide variety of different "junk" emails to just test stuff out and always have unique passwords there as well.
If you're someone who happens to be storing keys online or on emails, etc, it's even more important that you use password managers and make sure you're treading as safely as you can. Although my recommendation would be to take those keys offline and store them securely in many safe locations.
I have since not gotten hacked, thankfully, but have noticed a lot of hive accounts requesting to reset their keys through our recovery system so I'm often curious how the keys get leaked/stolen in the first place.
Even if you aren't that active on Hive or don't plan to be, you never know what happens in crypto. There's been times where I've remembered that I've mined some coins like Doge and Dash but the mining pools were of course dead or had emptied out my pending balance. It'd be a shame for people to remember they had a Hive account they were active on some time ago with some hive left only to come back later and find out their account got emptied out due to unsafe storage of keys.
Other than a reminder of how important it is to store your keys safely, have you had any experience in getting hacked in one way or another? What happened/do you think happened and have you put any effort into making sure it can be avoided in the future?
Sending 20% of post rewards to @commentrewarder for this post. Stay tuned for some more updates regarding the askthehive and manipulationstation community soon in collaboration with commentrewarder!
I am ultra careful about passwords and mix things up a lot. But very recently my Hotmail account got hacked which has never happened before. Once I regained access through the 2 step verification I obviously changed my password immediately.
However, the hackers cleverly set up a redirect so that every single email I received from anyone a copy would then automatically be forwarded to the address they had set up for the redirection of all incoming emails. It was in the hope they could scam one of the people sending me emails, by pretending to be me.
But as they had made an error with the destination email address for the redirect I was getting bounce backs to my junk mail folder of a copy of every email anyone was sending to me. This was the only thing that alerted me to the fact the hackers had set up, or rather attempted to set up, the forwarding email address. I then obviously disabled the redirect.
So even though I'm ultra careful we know the internet is not 100% secure and never will be. People can still get in to your various accounts and this is troubling given the huge volume of our personal data that is now stored online. A lot of the hack work is obviously bots at work. Check your account sign in activity for your email provider and you will see multiple daily attempts at logins, which you haven't performed.
Fortunately for me there was no real damage, well that I'm aware of. For you I can see the hassle you were caused and that must have been a bitch. Although fortunately you didn't lose any money we all know that reputation is everything in the crypto space and those hackers really caused some harm to your reputation with their hack.
I'm glad you managed to eventually sort shit out but as you and I have both learned the hard way, security is everything when you operate on the internet. Just as a sideline I would never urge anyone to store their keys or passwords online in any capacity, far too risky.
P.S I have set @commentrewarder as a beneficiary for a post I published a couple of days ago, it will be interesting to see how your new comment reward service works.
Okay so like 20 years ago a college buddy of mine specifically told me to not eat his leftover pizza... but I took that as a challenge and totally ate the leftover pizza. In retaliation he hacked my AIM Instant Messenger account by saying I had "lost my password" to recover it. Back in those days OPSEC was trash so America OnLine would literally email you your old password in plain text.
Ironically, my password back then was "hacker5261".
With access to this password he was able to get onto my computer and plant 'evidence' that I was cheating on my girlfriend with an ex. The evidence in this case being a hand-drawn picture using Microsoft Paint being set to my background image on my PC. I'll leave it to your imagination, but rest assured it was pretty funny.
From that day forward I vowed I'd never again be hacked.
Let's just say I'm glad that Hive account recovery is a little better than AOL IM.
lol...lesson learnt, don't eat the leftover Pizza.
lmao
Once I got good lesson from my former girlfriend. So I visited her and was need to show her some docs from my gmail mailbox. So I did it. Then I went home. In road I decided to check my mail notifications form social media. And so that one of them was opened. But I was sure that I didn't read it.
I started to think how it could happen. And then decided to look last actions in my account. And saw that last actions were at that time when I was in metro and even didn't touch my devices. Than I put 1 to 1 and remembered that I didn't log out from my gf's laptop.
When I came to her in next time I asked her to log out and to forget password.
So it was good lesson for me.
Since that time I don't use someone's laptops to enter to my account. And also always remind myself that I need to log out and keep my sensitive data in safety!!!
Nothing on Hive, or anything crypto related. Had my Facebook hacked a long time ago, and that was a pain in the rear because there was a credit card linked (to pay for various gaming apps). That was a brute force hack against an (old) weak password.
I have had to deal with identity theft a couple of times, both due to compromised records on other ecommerce websites, and the leaks lead to my own being compromised. Again more hassle factor than it was expense.
Also subject to credit card theft once as a result of not noticing someone had slipped a skimmer into the credit card slot at a gas station... some of that tech is extremely sophisticated and stealthy. But that's not exactly being hacked.
I find the main challenge being how to effectively keep track of some 300+ unique passwords and keys... without the password minder/storage presenting either a dangerous point of failure OR being a massive time sink!
I'm very careful with my stuff on the internet and I know that the biggest risk of getting hacked is through human error, so whenever I'm online I try to be as precise and cautious as I can.
Only time I have got hacked before, was several years back on my Old School Runescape account, I hadn't logged in for 2-3 years and when I returned to my account, it was empty of my stuff. I then put 2FA on my account and haven't been hacked since on Runescape anymore.
I do also get hacked quite frequently in my nightmares 😅
I had the hive hack years back when we went from steem to hive. The keys were the same or the recovery passcode or something..not sure anymore. Then I signed somwthing that looked like an airdrop and boom...4400 Hive gone.
Loads of rookie mistakes in there and never got the hive back. Even though a lot of the hive was from the fork, but there were so many hours of writing in there
This was more of a phishing than a hack. The outcome was the same
oh yeah I remember that, well glad you stuck to it and didn't give up on being active here!
I guess if you have been around in the space this will always eventually fall for something. These guys are all so sophisticated in what they do and you just need a second of not paying attention.
Can let it get you down! We learn, we grind right!
I guess password1, no longer works then !
I am always getting messages that I should change my password that it has now become a bit blasé about it, No, just fucking lazy I guess, all these strong passwords they keep auto suggesting, sheesh never remember them, and if I lost my mac, how the hell would I ever access the sites again. Important stuff has to be accessed with a fingerprint. I hope that is enough.
best regards from the technophobe luddite lol
For the hive, my keys are safe with my guru.
My MetaMask wallet was hacked, and to this day, I’m still trying to wrap my head around how it all happened. I have a nagging suspicion that a sneaky smart contract somehow leaked my private key, turning my digital assets into an easy target. Given that I consider myself quite tech-savvy, this incident was a real wake-up call for how I deal with security and my accounts over the internet.
This experience has led me to question the overall security of the entire crypto landscape, especially when it comes to smart contracts on platforms like Ethereum. It feels like trusting a squirrel with a stash of acorns; you just know something’s bound to go wrong. Until there’s a reliable way to ensure that all these contracts are genuinely safe and sound, I’m going to keep my distance from some types of crypto.
I'm getting a bit paranoid and realized that very few are really "safe" and private - Firo comes to mind for the private part. Not shilling anything, but I think a way to encrypt information on the chain could be interesting, even for something like Hive. Not everything needs to be public.
I was hacked once and the items i lost would today be well over 200k easy, it is what it is, at the time i would not think much about those things and only use and prospect new ventures with low regard for the teams honesty, only later on i realized scammers would forge projects only to get access to your metamask and steal your shit.
dang that sucks to hear :(
Personally, no, I have not been hacked. However, several years ago at the library, a co-worker fell for a spoof site and compromised their work email, leading the IT department (basically one overworked guy for the whole district) to mandate password changes and basic security training for all staff after he cleaned up the mess of spam and such.
Moral of the story: it's often easier to hack any network by fooling people than writing code or brute-forcing passwords.
Few times I got a message to my phone. In the middle of the night. It said something about me requesting a new password on facebook. Of course I did not request a new password. But I still changed password the next day. But other than this I was never hacked. The idea of my hive being hacked is one of my biggest fears. I been here since 2017 and invested a bit of money(for me a lot of money) a few times. First time probably a few years ago I bought HP, next I bought some splinterlands cards and finally recently some HBD.
I have been hacked wayyyy back... my Binance account, it wasn't a lot of money, only a $100 usd but back then I only got into crypto and it was a terrible to say the least... so far nothing on Hive..
Although curious, how exactly does this account recovery work and is there a post about it somewhere, I might need to check if I have an account set to that?
Regarding account recovery, you can read these posts:
https://peakd.com/hive-139531/@arcange/account-recovery-about-trusting-and-not-being-trusted
https://peakd.com/hive/@hive.recovery/userguide
Thanks a lot @arcange. I'll check this out no doubt!
Maybe this post from first search result: https://hive.blog/hive-139531/@reazuliqbal/hive-account-recovery-gui
I know @arcange also has some UI and posts about it.
Basically if you have another account assigned as your recovery, you can then contact that person/account and ask them to start the recovery process. You have 30 days from the day your passwords were changed to reset it.
This only works if you still have the old original keys and the person you're in contact with knows you are the real owner. They can initiate a reset of the keys which effectively locks the hacker out of the account and provides you with the new keys.
Thanks for this!! Arcange also commented with a link to some more information.
It's like a year back when i went to a seminar which described cyber attacks and what measures to take upon to be secure. So they made us aware of a website #haveibeenpwned, we just need to enter our emails which we are currently using and see. I was shocked to see that there were about 10 websites which were figuring out my activities, like Linkdin, Instagram and many other apk's. I was literally shocked that the websites which are approved by the government and by many other authorities, they also track you! That's shocking..!
You have to be very careful while using internet these days, while putting up your photographs and creating up your passwords. Actually nowadays, not only you just have to take care of your account from not getting hacked but you too need to take care of a lot many other aspects, people are literally cloning the faces and misusing it!!
Did your other hive account get hacked as well? @cryptofairy
Or what's the reason you changed?
This is a necessary issue that should not be lost sight of. Convenience threatens security and many do not even know what a password manager is. Everyone who relates to the crypto world should know about it as well as using different seed phrases in different wallet.
Thanks for the Hive from @commentrewarder!
Hmm, this is a nice topic, I have been too careful and I do not fancy storing my passwords online but lately I've been too lazy to create a different passwords, so I do use same passwords for a few new websites I've logged in, I hope I won't fall victim one day.
Something happened to me last week, I was trying to open a Payoneeer account and I got an email from hackers I guess to input my OPT, thankfully I was very observant and checked the subject and name on the email, if I had clicked the link from that source to verify my account, I would have been on a hot seat. Hehe
Yeah that's scary, some friends have mentioned something similar as well.
I had a friend who had their email account hacked a long time ago. Like before it really became a popular thing. Even back then it was a horrible fight trying to get her access back for her. I finally was able to, but it's a process I never really want to go through again!
Normally many of us underestimate the risk of being hacked. Sometimes we take that reality seriously when someone close to us suffers because of it, or we are simply the main victim. Sometimes I understand that because of so much work and so many activities maybe we skip some guidelines to avoid hacking, but it is always worth taking the time to be on guard against this threat.
Greetings 👋
not on hive, but had someone steal my email account and sim on my phone once... lucklily caught it just as it happened and was able to recover it in a couple of days without any major issues. Was still very scary though!
It hasn't happened to me, but I have so many friends who have been devastated by hackers 😢
This post has been manually curated by the VYB curation project
Nope, luckily I haven't been hacked ever. Yet. Spoofed email address, found on the darkweb and shit like that but no real hacking. I once fell for a Discord scam, they were spoofing the real deal and I sent some crypto... I don't remember anymore how much, maybe 50 bucks but yeah, since then, no more communication with non-friends and not following any links on Discord.
My email account has been hacked (due to a weak password) but nothing connected to crypto has been hacked.
I credit the old hands on bitcointalk a decade ago for their advice to have a different user name and password for each exchange. When you consider how many exchanges have been taken down by insiders - btc-e, crypsy, mintpal - I shudder to think what those insiders did with those passwords to access people's accounts on other exchanges. Of course I lost money on crypsy and mintpal when they did a bunk, but no amount of passwords protect you from con-men in the exchange itself
I've never been hacked but I came close to giving away my pass keys in discord when I was new to crypto. Thankfully I realized something was amiss and didn't proceed.
I had my Metamask wallet hacked and was defrauded of a few tens of $. Although I still don't know how because I follow all the security measures, I don't use Metamask anymore. Everything I do with crypto now is only in the Hive area.
Fortunately, I have never been haked because I have a good knowledge of computer systems having been a hardware and software technician when I was a boy but it is necessary to always be careful because there are so many scam attempts around the web.
!hiqvote
I’ve had a few brushes with ID theft in my time, but never anything that amounted to more than kind of a pain in the ass. I probably could do a lot better job of securing my keys though…I would honestly just hate to have my Hive account messed with in general. Like someone hacks in and starts spamming the place with life insurance and Medicaid bullshit in my name? That would piss me right the hell off lol!
lol yeah, and in my case they'd use my reputation to trick people into clicking phishing links or other worse stuff. Having your keys safe is not only safe for you but people around you too!
LOL yeah if someone at your level here got hacked it would likely impact many users 🤣🤣
I have never been hacked and I hope never to have such experience.
How can I prevent such please
Many years ago I had the world's weakest email password. I somehow felt that getting hacked was something that happened to other people and I'd be fine. So, quite predictably, I got hacked. Lesson learned 😅!
Not hacked, but I got scammed and rugged a couple of times. Not sure which is worse. Probably depends on context.
@acidyo, I paid out 23.259 HIVE and 0.000 HBD to reward 38 comments in this discussion thread.
Fortunately, I have never been a victim of hackers in my #Hive account, but that doesn't mean I should feel safe and I should always be vigilant.
Never happened luckily. Maybe I was careful. Or maybe just lucky. Let's hope it never happens 😅
Until now I have not been a victim of hackers but as you say, we live in a risk area and we are not exempt from any damage to our account, we must always be alert to any strange situation that appears.
This is absolutely true.
I've learned much about the update you just detailed here.
Though I haven't been a victim of hack before but I have friends and loved ones who have suffered from the unbearable after-effects of hack cases.
Thankfully not hacked so far I guess but got scammed.
Thankfully no, although I have stepped up my security protocols a few years back.
Never been hacked i have been extra careful online always.
Please note that the rules of the community aren't in effect yet. Still polishing some last details before we officially "revive" a few communities along with clearer rules and usecases.
You mentioned the community(ies) but you haven't mentioned which community(ies)?
1 of them is the one this is post is in!
the other is manipulationstation, a great idea that can evolve and scale into more aspects but in the past having to do what commentrewarder basically does manually was quite a pain so will check how it works better this time around!
Your post was manually curated by @Shiftrox.
Delegate your HP to the hive-br.voter account and earn Hive daily!
🔹 Follow our Curation Trail and don't miss voting! 🔹
@libertycrypto27, the HiQ Smart Bot has recognized your request (2/2) and will start the voting trail.
In addition, @acidyo gets !PIZZA from @hiq.redaktion.
For further questions, check out https://hiq-hive.com or join our Discord. And don't forget to vote HiQs fucking Witness! 😻
$PIZZA slices delivered:
@hiq.smartbot(2/5) tipped @acidyo
https://inleo.io/threads/view/omarrojas/re-leothreads-7ucbvyeg?referral=omarrojas