guys i need some serious explanation , because i'm about to lose my mind yesterday 1 of my friends in discord sent me a link of a game saying he want me to test it for him after downloading the file , then extracting (i always have Avast Free Antivirus always on , for more than 5 years i have never been infected by any virus) i started the exe file of the game which is supposed to be an installer, when i started the exe avast as usual scans the file , avast scanned the file twice and DID NOT find anything in it and said clean in 2 seconds all my accounts in my browser of all websites got sent to someone who talked to me in discord and asked me to pay him or he will share it on darkweb or whatever he said he didn't mess up with the accounts while he could have , which is a good thing i started in the recovering procedure which re installing the windows , and changing the passwords of the accounts that didn't have any 2-step verification then add 2-step verification to what i didn't add to before i didn't lose anything until now to find out today that it wasn't my friend but it was the hacker using my friend discord account now what's making me lose my mind is , how the f**k did that thing pass from Avast like this , HOW!!! after what happened yesterday i'm starting to get paranoid , because yesterday i knew i got hacked , now what if i was hacked and i don't know ? i need any serious explanation guys on how this virus didn't get detected at all.
Well the problem start with Using just an av .. On any computer I install for friends I usually install comodo free security suite / av Which contains firewall & sandbox For any case ... And On my personal computer I use hips Protection too And I don't run anything I suspect, before check it in sandbox / check site / check file signature I always checking un-trust apps in sandbox, using process monitor tool That how you learn ...
but how man how , how strong/undetectable is this thing , if someone can make something like that then everyone later will be making things like that also is Comodo paid or free ? i saw the meaning of hips on malwarebytes site , it's an option in malwarebytes ? if u could do some more explanation i would be delighted
And rules for next time Don't open links nor files from mail & messenger If you believe it was send to you, Contact your friend .. and ask him directly
like how am i supposed to know that my friend who i speak with everyday on discord that he is hacked and that's not him talking to me also i don't have the phone number of every friend on discord
For your question I have yearly paid renew account Start install good security suite like comodo & Kaspersky for start I never open files nor links From anyone on messenger / mail And if you do .. at least in sandbox app
you are 100% and i know it's worth every penny for a good antivirus do you comodo is better than Avast ? like better than the paid version of avast but tbh it's all my fault not the antiviruses fault , he was tralking strangely (saying "how are you" while we were talking afew hours ago??) and look at the strange "i" Check the screenshot i have VM virtual box installed and windows 10 installed in it , i could have tested this thing inside the vm and it wouldn't have escaped from the VM i didn't do that because i was 100% positive if it's a virus it wouldn't pass from Avast , and that's because for as long as i was using Avast i never got infected so i admit it's my fault , but now i know
From my opinion is one of the best combined security suite available today It have free version & paid version. Both fine. From last time I check, Comodo hips work better than other equ. Of other products And it have a/v sandbox firewall cloud scan and more So you can be noob & pro and have full benefits of quiet Kaspersky is good too, I don't know if it have sandbox too or not The rest .. didn't check .. no need .. So even if a/v fail, cloud scan fail, You have sandbox & hips Alone they great, both are super great Hips alone is on fly If application behavior is abnormally ? Unknown? It stop and ask you if you which to proceed For every f* step .. . So basically.. malware free
thanks for the info i will re think about what antivirus i use and what options i use from it Avast does have sandbox in the paid version which is good because probably i will stick with avast while i have avast the free version i just didn't use to care about the antivirus because for as i told you before i didn't get infected before, but seems things are changing these days i was sick yesterday and when that happened at 2:00 AM i became more sick physically and mentally , watching all your accounts from all sites in a screenshot from someone sending it to you is not an easy thing to see
honestly , i didn't know these stuff , never did the research about antiviruses , totally my fault thanks for the info
Unfortunately, you have pretty much nailed it with that post --- nobody is 100% safe. NOBODY! There are some very, very smart and gifted folks out there intent on cheating and it has been that way for thousands of years. Just that now, they have a nice new toy to play with. And what fun it is for some of them. I even view posting on an online community like this to be unsafe if there is somebody really intent on doing harm. And things like posting what sort of equipment you use is not a good idea, sorry to state. Lots of people do it at the behest of others that have the best of intentions, but it just isn't smart to tell the world what you are driving around the Net with. Kind of like if you have an expensive car out in the brick-and-mortar world, except you have to view every piece of equipment you use on the Net as being that expensive car. And Dark Dinosaur has nailed it, too. Never open links unless you are sure why it was sent. "Why" is the key, by the way, not "Who". An acquaintance, friend, or even family member can get infected and not even know it, so that is why the "Why" is the key. Know why something was sent, or don't touch it. Now that is at the personal level of working the Net. At the professional level it gets way more complicated and the truth is one has to spend some money for some sort of seriously proper protection. If it is a large organization, you even need a specialist of your own, and that might even be a former expert hacker, except that use of "former" is sort of arbitrary. Hacking used to be a kind of sport type thing a long time ago. I don't think it is anymore. Oh yes, and the real confusion starts when the line between "personal" and "professional" gets blurred. Like if you are a member of the some organization like the RBL, VFW, American Legion, and other type large organizations that have these groups like chapters/posts/districts that have little money for expensive protection but use the Net a whole bunch for communications. That's kind of personal and professional at the same time. By the way, I have concerns about the Avast organization and have had rather difficult problems with those executives and employees off-and-on for years, but I suspect that line of discussion belongs in another thread that I haven't actually gone looking for in this online community. I was focused here on that part about links. Truth is, though, I am also a big part of the problem, as I have had difficult times with a number of large Net organizations over the years and it has had a lot to do with my bad attitude. I pretty much don't trust 95% of the Net population/citizens, and have become very jaded about those large organizations that make their profits from the use of the Net, especially those that sell security. Odd, too, I have actually worked with some of them in the area of testing their software. And that was after I stopped being involved in testing hardware. Ever tried to purposely make a computer stop working? That is some strange work, if a company is getting paid to do that sort of testing. Now you have these fancy midget computers that are even worse than the big ones. Anyway, never trust links unless you know the "why" of it.
And I actually have to correct myself on one point --- just knowing a "Why" might not be enough. Truth is, you have to be a little bit like the Poirot / Columbo style and look for any bit of strangeness in an answer to why. In this case, that hacker might have a smooth style and even an answer as to why could fool you. So you have to sort of ask yourself if there had been some similar style of action by that person you thought/think is communicating with you. Something in the past that matches what you are facing in the present. You have to be a bit like a detective. Security really does come down to not trusting anyone, even as that reads as a very nasty style of thinking.
probably i managed to counter his attack because yesterday he didn't take serious action and ruin my accounts for whoever sees this , just turn on 2-step verification on all your accounts NOW! saves you from ALOT of pain , don't be stupid like me Edit : image fixed sry uploaded wrong image first
Standard AV based on signatures can only detect what's already known to it (=reactive). Nearly useless for detecting zero-day exploits and as-of-yet unknown malware. Cloud-based protection is here to fill that gap by updating the local databases almost in real time and uploading possible malware incidents detected by the other options. Then, there's heuristics and behavior-based analytics (HIPS), better but also not 100% error prone. Unfortunately causes false positives here and there. Sandboxing and isolation is, on it's own, only good for preventing the spread of malware. Combined with all the other options it becomes very useful. Using brain and common sense - priceless. Fends off many suspicious things before they can even occur.
luckily for me , probably it was a kid for sure doing that , he probably found a some sort of virus generating tool that he used to make it he didn't take serious actions toward my accounts , which he could have i re installed the windows , added the 2-step verification on all the accounts that didn't have it turned on (including my Discord which as u saw above in screenshot) i changed the passwords of the rest of the accounts that doesn't have 2-step verification because they are just some normal websites if you reading this and whoever else gets in this this thread , just turn on your 2-step verification if you haven't (it's a free of charge thing and makes it impossible to anyone to reach ur account without ur permission) and get yourself a good antivirus from the suggestions above thanks everyone
its a FUD . you must learn how to safeguard your online systems / data in this era of cyberspace. Everyone must learn keen topics in cyber security. but who cares . after graduation everybody think that he or she is a masters in IT / IS platforms just by attending the most worst cyber internship of about a month or two.
well , i was graduated as a science teacher , and i didn't attend the most worst cyber internship or anything
worth mentioning , my friend had the 2-step verification the SMS message the hack actually bypassed that , i don't know how , but it's what it's i did read that there are many ways to bypass but due to the fact i got 0 knowledge i don't understand anything all i know that his file forced restart my discord , also discord was asking me to log in again so he was going to bypass if i had it when i did run his file , which i didn't have it turned on yet xD
2FA can be bypassed by session/token stealing. It's essentially hijacking a session which is already logged in (e.g. from a trusted device).