Silk Road forums
Discussion => Newbie discussion => Topic started by: alexcutter on May 16, 2013, 12:41 pm
-
Hi all,
It appears that my account has been compromised.
On the original thread, Libertas strongly suggested that I:
"Backup all your important data to an external hard drive, scan it with as many different anti-virus / anti-malware / anti-spyware / anti-rootkit programs as possible (preferably portable versions), then re-install your OS and create a new account..."
Before I do all of the above, would it be equally effective to simply roll-back my computer via Time Machine to a date prior to ever having visited SR?
If not, does anyone have any suggestions about effective anti-malware/spyware/rootkit software for Mac?
I'm currently scanning it with freeware called Avast, which was highly rated. Would that find the problems mentioned above? Running most current versions of OSX and Tor.
thanks!
-
Just trying to keep this above the spam...
-
How is it that you think you were compromised? I have been on Apple computers since 1995ish and I have NEVER had a virus/trojan/malware. I do not run anti-virus software and NEVER will, but I do scan it occasionally with macscan just to be certain. I do use icefloor firewall software and subscribe to a blacklist site for known bad addresses, etc. Give me some details on how and why you think you were compromised and then go from there...
I will subscribe to this thread so we can stay in touch...
Good luck
-
How is it that you think you were compromised? I have been on Apple computers since 1995ish and I have NEVER had a virus/trojan/malware. I do not run anti-virus software and NEVER will, but I do scan it occasionally with macscan just to be certain. I do use icefloor firewall software and subscribe to a blacklist site for known bad addresses, etc. Give me some details on how and why you think you were compromised and then go from there...
I will subscribe to this thread so we can stay in touch...
Good luck
Hi,
The reason I think my account has been compromised is that I was unable to log into my account from three different computers (2 Macs, 1 PC).
I've been a long-time Mac user as well, and have never had any sort of malware (except for a Word virus). I also use Little Snitch. It's most likely that that I got phished. Also, my PIN was VERY weak.
In any case, I've written it off to experience. I only lost about $100, and only had a few purchases on my record. I've set up a new account, with much stronger passwords.
Thanks for taking the time to reply.
-
Oh man, terrible... Sorry to hear this.
Do you run parallels on your Mac?
I use Macs and only Macs but I've never had issues.
My rule of thumb: If I don't absolutely need it, I don't download it.
If I were you, I would either:
1) Check my password/username/PIN a gadgillion times. I know this is dumb advice but be sure to pay attention to CAPS too.
2) Assume I got phished, because I have a hard time believing that someone installed malware on your mac to get on your SR account. It's possible, sure- but I think targeting PC users would be a lot less work for anyone that wanted 100 dollars. In this case, time machine doesn't matter.
3) Run time machine or just back up the files you want on an external drive and reinstall OSX.
Hopefully everything works out for you man.. Hang in there & good luck with your new acct.
-
Oh man, terrible... Sorry to hear this.
Do you run parallels on your Mac?
I use Macs and only Macs but I've never had issues.
My rule of thumb: If I don't absolutely need it, I don't download it.
If I were you, I would either:
1) Check my password/username/PIN a gadgillion times. I know this is dumb advice but be sure to pay attention to CAPS too.
2) Assume I got phished, because I have a hard time believing that someone installed malware on your mac to get on your SR account. It's possible, sure- but I think targeting PC users would be a lot less work for anyone that wanted 100 dollars. In this case, time machine doesn't matter.
3) Run time machine or just back up the files you want on an external drive and reinstall OSX.
Hopefully everything works out for you man.. Hang in there & good luck with your new acct.
I do run Parallels -- I trashed my existing disc image, and will create a new one from scratch.
I tried my password/username/PIN at least 100 times.
Pretty sure I got phished -- my password and PIN were nowhere as secure as they should have been.
Thanks for the thought -- got new account fired up, and ready for action.
Have a great weekend.
-
I do run Parallels -- I trashed my existing disc image, and will create a new one from scratch.
I tried my password/username/PIN at least 100 times.
Pretty sure I got phished -- my password and PIN were nowhere as secure as they should have been.
Thanks for the thought -- got new account fired up, and ready for action.
Have a great weekend.
1. You don't need your PIN to login to SR
2. You (and everyone else) really should be using a password keeper. 1Password is great on the Mac. Lastpass is supposedly good, too.
3. Your Mac is probably fine.
-
You don't need a PIN to log into SR but an SR account is useless to anyone who doesn't have a PIN. If his account got jacked, the money can't be touched nor can purchases be made without the intruder having the PIN. Correct me if I'm mistaken.
-
You don't need a PIN to log into SR but an SR account is useless to anyone who doesn't have a PIN. If his account got jacked, the money can't be touched nor can purchases be made without the intruder having the PIN. Correct me if I'm mistaken.
Correct. The most likely explanation is the user didn't write down the user/password when the account was created. Or just simply forgot/doesn't understand simple instructions to retrieve a password and pin.
If you can get logged in to the account, entering the wrong pin trying to make purchases or change the wallet info will lock the account for 72 hours (as a safety precaution) after attempting/entering an incorrect pin combination 10 times.
Once you wait the 72 hours SR will give you a link to click on at the top of the page once the 72 hours has passed and after the next login.
When you see the first welcome page you can reset/reselect a new pin (whatever length you want, the longer the better the strength) without having the previous unknown pin. Pretty simple and worth trying to retrieve that $100 in the account.
Good luck
-
You could roll back to whatever date you want to, but I would just suggest to rebuild the machine from scratch with fresh installs of everything. You should be able to keep files such as mp3's, documents, and iphoto stuff, but as he had said put them on a remote time capsule drive and scan them before dragging them back with a virus program.
You probably did just get your stuff phished, but once you have been exposed it can screw you over all over the place. If you do like most people and have a gazzilion things using the same passwords your life could be very miserable.
Don't do business with Communist Countries.
Hi all,
It appears that my account has been compromised.
On the original thread, Libertas strongly suggested that I:
"Backup all your important data to an external hard drive, scan it with as many different anti-virus / anti-malware / anti-spyware / anti-rootkit programs as possible (preferably portable versions), then re-install your OS and create a new account..."
Before I do all of the above, would it be equally effective to simply roll-back my computer via Time Machine to a date prior to ever having visited SR?
If not, does anyone have any suggestions about effective anti-malware/spyware/rootkit software for Mac?
I'm currently scanning it with freeware called Avast, which was highly rated. Would that find the problems mentioned above? Running most current versions of OSX and Tor.
thanks!