What's new
Carbonite

South Africa's Top Online Tech Classifieds!
Register a free account today to become a member! (No Under 18's)
Home of C.U.D.

Got taken for a fool by inn3rs3lf

SkiZo

Legendary Member
Rating - 100%
157   0   0
Joined
Mar 26, 2013
Messages
1,711
Reaction score
368
Points
5,185
I figured that too but unfortunately just too late.

I do feel however that there needs to be some accountability as we are all responsible to make sure our accounts are as secure as possible.
How difficult would it be to connect through a VPN or tor browser and login into my account, scam a bunch of trusting users and then after a day or two come back and just say no my account was hacked. In this case, the hacker was quite familiar with our way of doing business and that led me to believe that all was in order.
Not saying that is what happened here but it sure as hell could have been.

There were some small things that my spidey senses picked up but I put my faith in the system. I should have trusted my intuition, lesson learned. I won't be taken for a fool twice.

It's my understanding that the post was reported a few times during the course of the morning and would just be great if there was some kind of system in place to show that this post has been reported and a word of caution is recommended.

Looking at the wallet I transfer the ETH to it seems that I am not the only one that was taken for a ride, unfortunately.



But at the end of the day, I am seeing this as my donation to those less fortunate.
 
Good lord no… I’m really sorry man. I actually offered him a trade (he declined), but once he said he wanted R10K I realised it may be a bit weird. A friend of mine brought it to my attention that his photos were also fake.

A similar post popped up around 4AM again with another high feedback account that was claiming to be in possession of ‘illegal’ 11900Ks and 6700 XTs. The prices were a lot lower than you could even attempt to purchase those parts for overseas so the individual would’ve been essentially giving parts away.
 
Good lord no… I’m really sorry man. I actually offered him a trade (he declined), but once he said he wanted R10K I realised it may be a bit weird. A friend of mine brought it to my attention that his photos were also fake.

A similar post popped up around 4AM again with another high feedback account that was claiming to be in possession of ‘illegal’ 11900Ks and 6700 XTs. The prices were a lot lower than you could even attempt to purchase those parts for overseas so the individual would’ve been essentially giving parts away.

Yeah, he used the term "illegal" when I asked how he managed to get FE cards to SA, thinking it was legit, lol
 
Last edited:
On a semi related note. Is there any other profiles exploited in this hack?

Sent from my CLT-L29 using Tapatalk
 
Yes we identified (and fixed) another profile.

Guys, the only way this can happen is if the hackers either brute force or get your password from somewhere it's leaked. Protect your passwords and treat them with the due respect.
 
Yes we identified (and fixed) another profile.

Guys, the only way this can happen is if the hackers either brute force or get your password from somewhere it's leaked. Protect your passwords and treat them with the due respect.
I got a message from Google on Friday when I tried to log into carb that my password had been exposed in some sort of data breach, it then gave me a list of all exposed accounts/passwords and let me change them from there, I was quick about doing it, is it possible that this was all linked?
 
Wait wait you clicked on links on an email and changed your password on there? Send me a screenshot of the email please?

EDIT: In private, not posted on here.
 
I think he meant the native Google Security Checkup in the Google Security center. It actually works really well, listing possible compromises with options to change passwords etc. Also shows my password on Carbonite was compromised. Had 2FA enabled for a while now though, so some peace of mind.
 
I got a message from Google on Friday when I tried to log into carb that my password had been exposed in some sort of data breach, it then gave me a list of all exposed accounts/passwords and let me change them from there, I was quick about doing it, is it possible that this was all linked?
Are you talking about the Google password Manager that identifies and lets you change your passwords stored with google?


h t t p s://passwords.google.com/checkup/start?ep=1&pr=sa
This link?
 
I got a message from Google on Friday when I tried to log into carb that my password had been exposed in some sort of data breach, it then gave me a list of all exposed accounts/passwords and let me change them from there, I was quick about doing it, is it possible that this was all linked?
Sounds like the standard Chrome password thing, when you sign into a sign Chrome checks your username/password combo and compares them to any available data leaks to see if this same password was used on other sites that is on the leak list (just from your saved passwords from what I can see).
 
Ah yes, that's possible. You guys getting notifications - you used Twitch?
 
Ah yes, that's possible. You guys getting notifications - you used Twitch?
I got 2fa set up on everything that matters, including scamazon account, and since switching away from Chrome, I haven't had these notifications :)
 
Got similar notifications on my iPhone and changed all my passwords through there. @Toxxyc - Twitch was one of the compromised ones.
 
I figured that too but unfortunately just too late.

I do feel however that there needs to be some accountability as we are all responsible to make sure our accounts are as secure as possible.
How difficult would it be to connect through a VPN or tor browser and login into my account, scam a bunch of trusting users and then after a day or two come back and just say no my account was hacked. In this case, the hacker was quite familiar with our way of doing business and that led me to believe that all was in order.
Not saying that is what happened here but it sure as hell could have been.

There were some small things that my spidey senses picked up but I put my faith in the system. I should have trusted my intuition, lesson learned. I won't be taken for a fool twice.

It's my understanding that the post was reported a few times during the course of the morning and would just be great if there was some kind of system in place to show that this post has been reported and a word of caution is recommended.

Looking at the wallet I transfer the ETH to it seems that I am not the only one that was taken for a ride, unfortunately.



But at the end of the day, I am seeing this as my donation to those less fortunate.
Dahm. You actually got scammed TWICE! By the hackers and the Ethereum gas fees!

fcking gas fees!!
 
Last edited:
Hey @Toxxyc as @Qui_Illustrati mentioned it was the Google security checkup message and on that website they show you which accounts have been compromised, I had 4 accounts compromised which were all using the same password, changed all of them and enabled 2fa on carb
 
Then I don't know where your stuff got leaked, but I'm glad it's changed now.
 

Users who are viewing this thread

Latest posts

Back
Top Bottom