I Got Hacked in an Unusual Way | Tips to Protect Yourself
ฝัง
- เผยแพร่เมื่อ 21 ก.ค. 2024
- You may have noticed that our TH-cam channel got hacked 2 weeks ago. TH-cam was actually one of four hacking incidents and none of them resulted from a fishing attack where you click a link or by downloading a file containing malware, nor did the hackers know our usernames or passwords.
LEARN MORE
===========
🏫 LEARN MORE in my Excel courses: bit.ly/courses240220
📰 EXCEL NEWSLETTER - join 450K+ subscribers here: www.myonlinetraininghub.com/e...
🎯 FOLLOW me on LinkedIn: / myndatreacy
💬 EXCEL QUESTIONS: Get help on our Excel Forum: www.myonlinetraininghub.com/e...
⏲ TIMESTAMPS
==============
0:00 What accounts got hacked
0:15 When everything happened
0:52 How this happened & recovery process
8:07 How you can protect yourself from hackers
9:14 Important note for our customers
#TH-camChannel #CybersecurityInsights #Cybersecurity - วิทยาศาสตร์และเทคโนโลยี
❓Do you know any other methods hackers can use to hack accounts?
Thinking about the credit card, no idea but it occurs to me that the dark web is swimming in stolen data collected over years from various sources.
And hackers are not acting alone but a network.
So that short delay was presumably used to cross match your logins to maybe a previous card hack?
Forensics at the airport would reveal a list of accessing devices, I mean one bad guy was literally sitting in range, right?
No idea what police are/would /could /should do, or the multiple organisations starting with BA, airport owners, WiFi provider etc, even the Swiss authorities??
Also starts to implicate the status of literally all your PC files (if accessed via public wifi). I know my own data is not locked down if someone got on to the pc...
Also my opinion of Airbnb hosting is jaundiced after a bad experience... So I wouldn't even trust those guys particularly.
Crims think foreigners, travellers, tourists are easy prey. To an extent, they are right. Tired & rushed is no good for awareness.
If I knew this, I'm a hacker and wouldn't tell anyone.:-) The "normal" user has no idea what is possible or what is happening or has happened to his account.
How did you pay for the WIFI in the Airport? With the credit card ? or you use the credit card when you were on the compromised wifi in the Airport ?
SIM-Swapping. So it's better to use TOTP instead of SMS as the second factor. Keep Antivirus and OS and installed Software up-to-date
@@pbrigham most airports give you free wifi
its criminal that these social media companies don't provide adequate support for their customers/partners. Imagine a car dealer having no phone number, no manager... or any other type of business.
That shows up very clear what their priorities are. It is also somehow arrogant, like you are not allowed to disturb them. Google especially.
They also do not want to spend any money to hire people that answer requests.
@@adrianTNT I had a trick to be able to talk to facebook support... buy advertising and then you have the option to chat with a real person, and then they indefinitely suspended my advertising account saying policy violations (I don't violate any policies) LOL
Internet companies are operating at a scale that is totally unlike your local car dealer. This comparison is unhelpful.
@@grantcivyt Your response is beyond "unhelpful".
It would be criminal if you paid for it, but none of us do, so can't really complain.
I'm so sorry you experienced this terrible situation. Thanks for posting such a wonderful summary as it may help others in the community from suffering a similar fate.
I hope so 🤞
Although the extra steps necessary to secure our accounts are inconvenient and time consuming, trying to recover a hacked account is thousands of times more inconvenient. Your tips are spot on.
Hi Mynda. I am sorry for what happened to you.
Google is still not secure. Another large YT channel was hacked last year (Linus tech tips) and they highlighted the absurd allowing you to delete your videos or rename channel without being asked to retype the password again!
Yeah, it’s madness that they allow changes like this unchallenged!
On LTT's case they got the session cookie from an employee who got tricked into opening an executable posing as PDF because he taught it was from their sponsor.
accessing settings SHOULD ALWAYS ask for password, and yeah good luck contacting anyone from google.
Brilliant Mynda, you turned an unfortunate/stressful event that happed to you into a positive thing for our community whereby more good will come from it than your bad experience.
Thanks for sharing to this level of detail.
I hope so ☺️
Alternate theory: You connected to a spoofed public wifi, and all your traffic was watched. In addition, there's more to this because it seems odd that they're trying to make charges in your home country, yet stole your information on the road. An anti-virus application won't tell you about a "legitimate" remote connection. You should be checking your Windows logs for connections from other machines. Regardless, public wifi is something you have to validate carefully. Key is when there is no password.
Yep, this is likely the method. Everything is spoofed (DNS/SSL/etc.) and the attacker has unencrypted access to everything. Attackers carry the equipment in bags.
Yes, this is my thought too. When they connected to the airport wifi, they probably accepted a certificate from a spoofer without thinking about it. This allowed them to decrypt all their network traffic.
@@trail.blazer Although i believe this was indeed the method they used to get what they wanted, SSL spoofing is hard as you can't simple create a fake certificate and hope the browser will accept it. They probably just stripped SSL altogether and the user didn't notice it was using an http connection since most browsers no longer show a big red warning when you visit an insecure website.
@@themartdogthankfully you can't accept CA certificates that way. There is no way to make a browser download and install one. Nor a wifi connection. You need to manually add them yourself.
No, this is not possible. TH-cam uses HSTS, so a passive observer or even a man-in-the-middle attack cannot reveal any information. Even a state-level actor, like China or the United States, wouldn't be able to do it.
I am sorry you went through this. All I can say is be strong and keep pushing because there is an entire global community that is thankful for your work. Thank you for sharing this too. It opened our eyes as to how crazy things can be
I appreciate that 🥰
8:22...you can save your phone battery if you go for the Tethered option instead of the wireless option.
You do need a USB cable to connect your phone with the laptop/pc.
But it's more stable then wireless.
Good to know. Will give that a try too 👍
This is also much more secured than the wireless option. With WiFi a nearby attacker can masquerade as your hotspot and trick your laptop into connecting to their rogue hotspot instead of your phone's. This happens every year at DEFCON in Las Vegas, almost as a joke on the uninitiated.
Yes agree - when using my phone's data on my laptop I find it is always better to plug it in via USB rather than use WiFi. As a plus, the phone stays fully charged.
@@F85C8CE2A7831FE68C63I've heard that DEFCON has gotten a little bit more responsible not much but a little bit. I am also curious about the masquerade as your Wi-Fi APs. I hear about this all the time but I have yet to have my suspicions confirmed. Sure I can clone the name, but is the Wi-Fi standard that brittle to fully be able to clone the password to? Granted the standard isn't open so we see lots of problems with it because we wouldn't want Open researchers to suggest fixes before we put it out in the world and burn it into hardware. It just breaks my brain to think that with an AES encryption key system (implemented properly?) another party would be able to join the conversation without the valid key to decipher it?
Although that is completely negated if all parties have joined the conversation due to a password being publicly posted at the desk.
So sorry for the stress you suffered. I’m truly grateful to you for sharing the entire experience and your analysis as it will help everyone gain insight and improve their own security.
Thanks for your support!
Also do not use charging ports they offer in airports (use an outlet and your own charger instead). Those little USB "charging" ports can be hijacked by a little piece of hardware that can be collected later - and your charging cable is also a data cable.
Yikes! Nowhere is safe. ☺️
@@MyOnlineTrainingHub I’ve seen that they sell usb charging cables that don’t have the data conductors connected… just the power connections. I don’t travel much but think I’ll pick some up for all my family members
@@MyOnlineTrainingHubThere are tools you can buy that blocks the data. You connect device to the usb data blocker first, then connect that to the power port. They cost about $10-$15 USD on Amazon. Even if you don’t plan on using it, it’s good to have in emergency.
Alternatively, make those public charging ports safe by bringing your own 'USB data blocker'. That is a small USB adapter that passes through the charging voltage but blocks any data transfer. So you can be sure to have no USB data connection at all and therefore no risk, just receiving the energy.
Another possibility (which I'm using personally) is: use a powerbank inbetween! You'll need a powerbank that is capable of charging your smartphone while being charged itself. My powerbank can do that and so I plug the powerbank into the public charging port, and my smartphone into the powerbank. The powerbank doesn't do any USB data transfers, so I'm safe from USB hijacking, and at the same time I'm charging both my phone and my powerbank, which can be quite convenien and makes the most out of the 'free energy'. :)
The powerbank is a good idea. I usually carry one of them with me when travelling anyway, so saves requiring another device.
I'm sorry that this happened to you. Thank you for posting this video that has converted a negative experience for one into positive outcomes for many.
I hope so 😊
I am so sorry that you went through this terrible experience. Thank you for being so informative and using the experience as a training for others. I am sharing this video with my peers.
Glad it can help others be safe. 🙏
Wow, scary stuff. I'm sorry you had to go through this. Many others would not have the knowledge and skills to navigate it as well as you did. Thank you for sharing.
Thanks so much. I hope it helps others avoid a similar experience.
You beat me to saying almost exactly what I was going to say. Scary stuff, indeed. I could feel my pulse rate climbing from panic just reading the narrative. Great job Mynda, keeping your wits about you under extremely challenging circumstances! I'm not sure I would have been able to.
Thanks for sharing. I’ve enjoyed your videos for some time now and appreciated the work content in their production. It must have been heart-breaking to see someone almost succeed in destroying what you’ve built. So glad to know you are back again! Best wishes.
Needs repeating, backup, backup, backup. I've seen too many businesses burned because they didn't. Make them and verify them. As for them VPNs whenever one has to connect using WiFi one doesn't control.
Thanks for your support! 🙏☺️ I do have all the videos but re-uploading them from scratch would not be the same as all the video urls would be new. Not something you want. Thankfully Google were able to restore the channel for the most part.
So glad to hear you managed to recover your website. The scammers have become very sophisticated so thanks for sharing and looking forward to more of your great content
Thanks for your support ☺️
WOW! I am so glad that you got the channel back and sorry to hear about the stress!! Thank you. Hopefully this video also saves many others from a similar experience!!
I hope so too!
I'm so sorry you had to go through this. It was terrible. God bless you and thank you for sharing the experience.
Thanks for your support!
1. Most every site, especially those handing sensitive information, already use end-to-end encryption. Not only is this better than what a VPN can do and makes the VPN pointless, but in the extremely rare case where you send sensitive information over an unencrypted channel where a VPN’s encryption *actually does* do something helpful, you’ve likely got bigger problems that a VPN is giving you a false sense of security about.
2. Malvertising is a possible way this could have happened. Just allowing an ad to load, thus running some third-party’s code, you have the threat of a serious zero-day exploit being used against you.
3. Even the best anti-virus can still miss stuff.
People like to blame public WiFi for hackers sniffing web traffic, but that's not what happened unless the hacker had Google's SSL private key and password or a quantum computer. The one practical way of exploiting public WiFi is by redirecting users to phishing pages. It's more likely to be an infostealer that was undetectable.
Thanks, David. I have always felt safe with https, but this experience has taught me to trust nothing. If it was a phishing page, then how did it log me into TH-cam? I didn't notice anything strange at the time.
@@MyOnlineTrainingHub Hackers often use captive portals with an 'Evil Twin' and/or will spoof login pages of popular sites with spoofed DNS responses if WiFi clients aren't properly isolated from each other.. You connect to what you think is the legitimate hotspot and is actually the attacker's machine. Then an unsecured, unverified page pops up prompting you to login to Google. Someone who doesn't understand such portals might be fooled.
David is absolutely correct on this. It can only be one of two things, an already hacked system (i.e., laptop) or previously hacked home PC, or user error and/or spoofing to enter credentials of some sort that could later be used. I am of course dismissing the obvious case of the use of an insecure, easy to guess password...
I agree, it can't have been a compromised Wifi due to how HTTPS works. It's not possible to sniff any traffic this way. Most likely you got malware on your computer from _somewhere_ which stole your token and then removed itself.
I have followed your channel for years (I'm retired but still use Excel and enjoy learning about it). It was very kind of you to post this video. Thank you for all you do-I'm glad you came out of this okay. Signed-an old man from Illinois.
Thanks so much for your support 🙏
Good job uncovering the trail, Detective Mynda. :) This is actually super interesting (and frightening). I'm so glad that the damage wasn't worse.
Thank you so much, Jon! It wasn't a pleasant experience 😅
Thank you for sharing this with us so we're more informed. Really sorry that this happened to you.
Glad I can help others avoid this experience ☺️
Que bien que ya estes de regreso, prácticamente hicieron un desastre los piratas que accedieron a tus cuentas... Lo siento mucho Mynda, me alegra que ya estes de regreso.
Gracias 😊
Sorry to hear this Mynda: please keep yourself strong. Thanks for all the tips in the video.
Thank you so much!
Thank you for the extracurricular education. So sorry you had to suffer through this. Love your material.
Thanks for your support ☺️
Thanks so much for posting this Mynda. My ebay account was hacked last week and they got my private email address and phone number, thankfully nothing more. Repeated conversations with ebay customer 'support' yielded absolutely nothing apart from being told that ebay has a policy of not providing support or help in instances of their users/customers being hacked!! At least you got an apology from google. All the best and many thanks again - my fav channel
So sorry to hear that. I did get an apology and pretty good support once I figured out a way to get in contact, which was way too hard. But also, Google allowed this to happen and they really should have better protection when you’ve set up 2-factor authentication on your account.
@@MyOnlineTrainingHub - As you can see 2-factor authentication can be compromised too while inconveniencing the real user... hate those things constantly having to type slews of digits every time I log into an account with 2FA. smh I use unique random passwords for each site (never the same for more than one), and never got hacked in 20 years I've been using the web.
This is such a scary situation, you have been through. Sorry for you & thanks to you for coming out with the details for others to know.
Thank you!
Know this, you have us dear, that's something hackers can not hack, lots of love and respect for you and for your hard work
Thanks so much for your support ☺️🙏
Even though you think there is no malware on your devices, it looks like client side session interception. Other people explained why it is unlikely in public wifi spots. But its worth mentioning that its not impossible. Having control over network and persueding you to install fake CA certificate, allows an attacker to hijack https encryption. What is important here, these two elements do not have to happen at the same time. CA certificate could have been provided much earlier, so you did not notice. Another possible attack vector is via browser plugin. Meny of then have a lot of proviledges and if such plugin is not malicious itself, it can be vulnerable to attack.
Yes, the CA certificate is a possibility. I don't recall accepting one, but that's not to say it didn't happen.
@stanst6092 .. Yes, thanks for this - exactly what I thought of the comment about public WiFi, really appreciate your more detailed remarks here.
They can't just grab a session token because you used open wifi. Most Websites use https, which is encrypted. Antivirus doesn't really work and shouldn't be suggested. As you already said, you had antivirus on your computers. So either this wasn't the problem or it just shows that the antivirus doesn't work.
I guess anti-viruses are next to useless unless its archaic viruses pretty much?
Thanks for the very educational video, Mynda! I'm sorry this happened to you. I'm sure it was stressful!
It's great that you were able to get everything recovered in a relatively short period. Although I'm sure it felt like days.
And btw, great video! I really like the editing.
Cheers, Jon! It wasn’t a fun time but I learned a lot and hopefully can avoid it happening again 😊
So sorry to hear that Mynda! Thank you for sharing such detailed tips and information. Hope you and your family are ok!
Thanks for your support ☺️
I'm sorry your husband and you had to go through this. Thank you for candidly sharing your experience with us and offering thoughts on how this happened to you and how we can avoid a similar situation. Keep up the fantastic content.
Thank you so much! Will do 😊
Mynda ... thank you very much for your open and transparent sharing of this terrible experience. I can't say I would have near the depth of knowledge to have taken the immediate actions you and your husband took. There are only a very few subscription emails that I receive on a regular basis ... yours is one of them. Your content is fabulous and, along with your genuine approach to delivery, it sets you apart. I may be just one voice here, but I suspect many other of your viewers share my opinions. Hope you get back up and running and I look forward to your next blog/videos.
Thanks so much for your kind words and support 🥰 I hope this video can help others avoid this experience. We are lucky it wasn’t worse.
Horrible event. Thank you for sharing and helping us all learn to protect ourselves better.
You are so welcome 🙏
Sorry you had this bad experience and thanks for posting the details as a warning to others. Please keep up the great work that you do.
Thank you, I will 🙏😊
Thank you for posting this! I work in IT and hacking incidents are definitely frightening! Your summary was excellent. And I agree that the most likely culprit in this case was public Wi-Fi and the hacker's use of pineapple or other Wi-Fi snooping tools to steal credentials and/or session cookies.
It’s terrifying how easily they can get your details and the damage could have been a lot worse.
Is the belief here that the laptop itself was compromised by the hackers? i.e. Windows or Mac or Linux - i.e. the OS on the laptop?
All the sites mentioned use TLS - even with a pineapple in the middle, the hackers still wouldn't be able to get the session cookie - or info from the browser.
I would add a recommendation to install Malwarebytes to any PC or Mac. Be sure to turn check for rootkits as it's not on by default. Turn off the browsers ability to store passwords and payments. Even tho she showed the Edge screen where "add" was empty, click the gear to double check. More often than not there will be saved information there which you want to delete. Turn off the same stuff in Chrome and Firefox.
I assumed that these website use HTTPS. How can the token be intercepted?
@@AlainDejalleYes Sir I also want to know. Please tell me also once you got to know it.
Oh dear! It’s awful that this happened to you. Hope these scumbags get charged with fine and jail time.
Thanks for the alert - I’m going to delete my saved passwords now
Thanks for your support 🙏🥰 unfortunately, I don’t think they are likely to be caught but hopefully I can prevent others falling victim.
What a scary thing to happen! So glad you got it resolved and thank you for sharing so clearly what happened, how and the steps for recovery.
Very sorry you experienced the worst of society. You are so knowledgeable. Thank you for sharing all this information with us.
Thank you so much! ☺️
How can an open Wi-Fi be insecure? All web connections nowadays are HTTPS, so encrypted. Any traffic captured reveals no info to a hacker.
But if a site has vulnerabilities and was previously compromised then the injected malware javascript can send the session id to the hackers.
So it seams to be a server fault or a client fault.
Supposing your PC was clean AND also all Google systems then I recommend a more secure web browser because it may have not been protecting your Google cookies (session ids) properly while navigating non-Google sites. I suggest Firefox because it has specific mechanisms for cookies safety and isolation active by default. I don't know about Chrome's status on this topic.
Cheers.
P.S.: Where are the experts to comment? I am very curious on a good analysis even speculative ones. I'm an advanced PC user but not security analyst. Also not english-native person. ;-)
I always used wifi on the understanding that https was safe too. All I can tell you is I was hacked, and it happened after accessing wifi. I was using Edge, so 🤷♀️
Lots of love you Mynda. I will listen to this again and make notes. Glad your now safe. ❤
Glad I can help you avoid this experience 😊
I'm so sorry you experienced this. I enjoy your content and wish you all the best moving forward.
Thank you so much!
The WiFi theory doesn't make sense. Connections to Google and such are all SSL encrypted. Even on an unencrypted WiFi no one would be able to capture session tokens. Plus I don't think you can do a lot of that Google stuff without putting in the password at some point. Maybe you didn't notice a man-in-the-middle attack on unencrypted WiFi... maybe but I think you're missing something. What is this new laptop? Where did it come from? Did you wipe everything off it and install the OS fresh directly from your the OS vendor? Was the OS up to date? My bet is that laptop is the key. Antivirus software is essentially useless so I wouldn't regard those scans as telling you anything.
It’s not the connection back and forth that’s the issue, it’s the cookie/session token stored in the browser temporarily that they were able to get over the network. That’s why when you login to public wifi networks you get a warning about it not being secure. The laptop was a new surface direct from Microsoft with the latest version of windows 11. I’m pretty confident the laptop wasn’t infected with malware.
@@MyOnlineTrainingHub "Over the network"... that would be encrypted with SSL including the cookies. Still missing something. They could have hacked into the laptop itself maybe. I am interested in knowing how this happened though. It's often a small detail people don't remember doing. So far I don't see an explanation.
@@MyOnlineTrainingHubit would have been better if you have done a clean install before using the laptop.
@_droid me too. There are some pretty sophisticated possibilities like this one: cybersecuritynews.com/mitm-attack-on-wi-fi-networks/
@jirehla-ab1671 maybe, but I think it's highly unlikely I received a brand new in the box laptop from Microsoft that contained malware.
@@MyOnlineTrainingHub You get the warning about it not being secure because SOME traffic from your laptop is sent in the clear e.g. regular old DNS queries, which might give away which websites you are visiting. But _droid is right, modern browsers try to force HTTPS (aka SSL/TLS or even now HSTS) meaning data transmitted between browser and server is encrypted. It shouldn't be possible now to simply sniff raw wifi frames, or to sniff higher layer IP packets to steal cookie/session data. What they're suggesting is also my thought, that they somehow compromised the laptop itself - still over the public wifi network somehow, but a more involved attack and not just sniffing/copying your data as you exchanged communications with those sites.
Never. Ever. Use public wifi. Especially without using a VPN.
Cheers!
How does that stip the SSL layer used to access the web site?
Thank you for sharing. It's quite wonderful you managed to stay safe and recover the accounts, and chose to educate others as well :)
It must have been very discomforting. Really sorry to hear that, but I'm glad you were able to recover your account and put up this important lessons learned for us to learn too. I pray you well in all your endeavors.
Thank you so much!
Blimey this is terrifying! And you are obviously more savvy than many of us.
We're doomed! Doomed!
It certainly was scary, and we were lucky it wasn't worse. I feel a lot more educated and in control of my cyber security now, but you can never be too careful.
@@MyOnlineTrainingHub So, always use a VPN when travelling away from home? When you say log out of active accounts when shutting down, do you also include Google and Microsoft? I do log out of other websites, but those two sit behind the activity of the computer (Microsoft 365 and various Google activities)
Yes, log out of everything. Imagine if they had access to your email account!!!
So sorry this happened to you, of all people. Thank you for sharing your experience. I hope the ordeal is behind you.
It is, thankfully 🙏
Thank you for sharing your thought process and activities after this terrible ordeal, so that we remain vigilent! Mynda, we love your great videos with interesting content, perfect editing and unwavering professionalism, and this was no exception. Glad that things are getting back to normal.
Thanks so much for your support!
Thanks for posting this info (and in such a clear, outlined way as your Excel videos!). I'm sorry this happened but happy that you were able to restore and prevent wherever possible. It makes me think of all the people who make their living from internet commerce who would NOT be able to detect this or know what to do.
Thanks for your support! Much appreciated 😊 it sure was scary 😔
I am sorry to hear this happened to you. Thank you for sharing this video. Hope you recover your account.
Thanks for your support. We've recovered the account 😅
So glad you got it all back, you would be a big loss to the community, never mind the major personal loss it would be for you. Thanks for the excellent-as-usual video about it, got to forward this to a few people!
Thanks so much for your support!
I am so sorry to hear that. I hope it never happens to anyone. That's an awful thing to happen to someone.
I hope this video can save others from having this experience.
Glad that you acted fast and had it all back ; appreciate sharing your lessons learnt. Wish you & family a safe time
Thanks so much!
Sorry to hear that you had to make this experience and I am happy that your are on the way to recover from it. A big thank you to make this public in such a detailed fashion. A lot of your recommendations has rung a bell with me and they are a great to reminder to check the own precautions. However, one thing I would never ever do is to connect to public WiFis regardless how trustworthy the environment appears to be. I hope you get back on track really soon. All the best. Cheers …
Thank you so much! We’re thankfully back on track now 🙏😊
So sorry to hear about this. Hope you and Phil were able to reassure each other that first night. Can't imagine what it must have been like.
It would have been 10 times worse without each other. Definitely terrifying. ☺️
it is sad that the best people always have to go through the worst experiences. thank you very much for sharing this very unpleasant situation. All the best to you.
Thanks for your kind words 🥰
I am really sorry about what happened to you. Good thing you recovered your channel.
Thanks for your support!
I just happened to see this video while doing research on internet security. The way you tackled this is both admirable and professional. I use Excel a lot and this video, and your way of turning things into a positive, earned you a like, sub and notifications on the channel :)
Thanks for your kind words and support!
Thank you for sharing this story and the good advice.
Although you say you're no security expert, this story sure sheds a light on some disturbing methods. Thanks for the explanation. I for one am glad you're back !
Thanks for your support ☺️
So sorry this happened to you! What an awful experience :( Thanks for sharing
Thanks for your support!
How truly awful....The stress it must have put you through, and at that time of night!
So glad you managed to get everything under control eventually.... I really feel sorry for those less tech savvy out there 😢
Thanks for this and all the other amazing videos you provide ❤
Thanks for your support!
That is terrible Mynda. What the heck is wrong with people? Luckily everything is now ok and thanks for posting all of the security measures to take!
Thanks for your support 😊 hope it never happens to you.
I share your frustration! My computer was hacked about the same time yours was. I immediately shut everything down and then started figuring out how they gained access. Research led to discovering my ISP had been hacked, but only learned about the breach when it made the news. They didn't even offer any type of help to prevent the possibility of hackers gaining access in the future. Like you, I have changed how I use the internet now, down to turning off my network card when I am away from the computer for any length of time.
Sorry to hear of your experience. It certainly changes the trust level you have in general.
The really hard part, as you have experienced, is how they decide to hit your system of all the computers in use. I will never know how they got it in, but I have made it extremely hard for someone to ever do it again. From that perspective, we learn to be more diligent and take nothing for granted.
Really sad to hear this...wish you the best to recover your site
Thank you 🙏 we are fully recovered, but it was very scary.
Many thanks for sharing your experience and how you handled it. It helps us all be vigilant. Your channel is such an amazing resource, so sorry you had to deal with this.
So nice of you 🙏
What a terrible ordeal for you. Thanks for posting such a succinct and useful video
Glad it was helpful!
Thank you so much for the step by step of how this happened. Thank you for the great tips at the end, I'm in Cybersecurity, but for anyone out there who isn't, this is do helpful. I'm so sorry you are going through this! Very helpful to have shared!
Glad something good can come of this experience.
Wow, sorry you had to experience that. Thank you for sharing and making us aware of how we can better secure ourselves against the hackers.
Thanks for your support. Hope this helps you avoid experiencing the same ☺️
Good luck to you. It is a dangerous world out there. Hope you are back up soon.
Sure is! Thankfully, we’re back up and running 😊
I'm so sorry for what happened. Thank you🙏 so much for sharing these tips.
You are most welcome 😊
Thank you Mynda for this beautiful and informative video.
And I'm so sorry that you had such a bad experience.
I was very angry when that happened to you. I kept refreshing my TH-cam hoping there was a mistake.
Thank god everything is back to normal, because we can't lose someone great like you ❤❤
Thanks for your support. Unfortunately, we lost a lot of followers when the hackers started their livestream, so I appreciate you had faith in us to stick around 🙏☺️
Thanks, Mynda. Your services really are incredible. Good luck
Thanks for your support!
All my thoughts are with you! Thank you for the great content you share with us!
I appreciate that! 🙏☺️
Thank you for a lovely detailed video. I appreciate your honesty and your sincerity and very thorough explanation. That is very helpful.
You are so welcome!
Crazy world , great that you discovered the security breach 8 mins into it . Also good you kept you wits and ploughed through to a solution .
Thanks for your support!
Mynda, I'm glad in the end all worked out with you.. Thanks for the information 👍
Thank you 😊
Thank you for the updates and education!
Glad I’m still here to help ☺️
you excel as well in explaining this !! thanks !!
Thanks so much 😊
Great to have you back.
Thanks so much 😊
Damn, I'm so very sorry!! What a harrowing experience!! I can't imagine the stress that created when you were awakened by the texts on your phone. So glad you didn't lose your channel.
Those damn hackers are getting so sophisticated!! Very, very scary!!
Thank you! It sure was scary. To the point where you feel numb. Hope this story can help others avoid it.
Thank you for the tipoff and for the tips. Even after a career in ICT Security as I have had, I can always learn from the experience of others. Being retired, I haven't been able to justify participating in your very attractive training courses, but I have added much to my range of Excel skills that your regular Excel newsletters offer free of charge. I am further encouraged by discovering that you are based here in Australia (even if it's Queensland rather than here in South Australia 😝).
It does raise the question (that I'm sure has been raised before) of whether Google is too slack in its authentication requirements for allowing privileged actions. 😡
😁 thanks for your support, Grant! It absolutely is too slack in its security around making changes to its account security. One of the reasons they couldn’t do much with LinkedIn is because they couldn’t add any additional emails/2FA credentials to the account without logging in first!
Scary! Glad your videos have been recovered.
Us too! 🙏
Sorry for the hack and thanks for educating us on how to stay safe
I'm glad something good is coming of it 😊
Well described and based on your unfortunate experience, this reminder prompted me to take heed!
Glad I could help you avoid the same fate!
Happy to hear things worked out in the end, but it cost you a lot of time and anxiety. I really hate hackers (and scammers). The amount of effort I have to put in myself to cyber-secure our home network is ridiculous, but we work and study from home. So, even when your not hacked, it is costing you time and money.
Well said!
One more level to protect for your credit card, is to use a virtual credit card. Only unlock it, when making purchases. Also, use a different number with each vendor, so you know who tried to use it.
I've never heard of a virtual credit card, but I'll look into it 🙏
I have noticed the weird behaviour on your platforms, but I didn't expect that it ranged to such a scale! I hope you and your family are feeling healthy. Thanks for the advice you have shared in the video openly. Back in 2016, I flew to Australia, Perth and noticed that restrictions at the airport could have been more substantial than, for instance, in Vienna or Germany. Could be the case that somewhere you just scan your documents or payment cards? If malware is used on one of these devices, the hijacking starts before you even take off.
It sure was scary and at one point I was just waiting for the next thing they were going to attack 🤦♀️
@@MyOnlineTrainingHub I am sure it will be alright. My warm hugs from Ireland ♡
Very interesting, glad you got your accounts back
Thank you!
Thanks for sharing. It is a brave move that will help us all
Thank you for sharing your experience. I will be starting to travel internationally again and have certainly learned from your experience!
Best of luck!
Yep, Google/TH-cam is absolutely terrible when it comes to security for users or even how victims can recover.
I'll agree to that.
First video of yours I've watched, but I'm very sorry this happened to you. I hope you can recover your financial losses, at the very least. As for the time you invested in fixing this hack, that can never be recouped. Thank you for trying to help others avoid this all-too-common crime.
Thanks for your support ☺️
Wow how scary, I'm so sorry to hear that! I can only imagine how awful that must have felt :/. One question that I may have missed--when you were in public e.g. using airport WiFi, were you using a VPN?
No, I wasn't using a VPN.
Thanks for explaining how the hack was done. Scary as to how easily (and cheaply) you can setup a hacking hotspot.
Thank you for sharing your story for us to keep our guard.
Was the new laptop their gateway?
Yes, definitely the laptop because it happened when we got home and all devices were off at the time and we didn’t have any viruses, so it must have been a token theft on the laptop over wifi.
Thank you for sharing. Hackers have become extremely sophisticated in how they hack. Needless to say, the digital protection systems are always playing catchup.
It is only by sharing these live experiences that others may sharpen their awareness to hackers and implement more secure digital management practices. I sincerely hope that you recover everything that was stolen and that the interruption to your business and life is short and not too painful.
Thank you. We have recovered everything, thankfully.