Hacked to Death and BigG Kick me in the Balls!

Discussion in 'BlackHat Lounge' started by Madeezy, May 20, 2008.

  1. Madeezy

    Madeezy Registered Member

    Mar 29, 2008
    Likes Received:
    Geez Guys I am bleeding here.
    Someone managed to breech my security and got hold of my gmail details.
    Then changed the password. Filled the form out Google provides you and Bang next thing I know the Gmail account is disabled.

    4 years of info in it, all online purchase info, all user names and passwords and personal info. And now no way of gaining access to unknown and forgotten user names and passwords because they were all in the bloody account.

    next thing no access to my ad words account...yep you got it....contact ad words staff go over the whole story of the gmail account and yep ok ok we will look into it some more and get back to you....and yep... BANG an email from them two days later saying my ad words account is suspended and I can ever advertise on ad words again and PLEASE DO NOT contact ad words support staff any further!

    Next thing I find is my pay pal accounts not working cant get into that...yep they got in and changed the password...then politely did a transfer from my bank account to paypal and went shopping!
    But I must say despite the horrible tales you here about paypal at times...they were nothing but bloody excellent in helping me out and sorting that ens of things out. Totally professional AND I got to actually talk to a real person ND NOT SOME BLOODY BIG MAMMOTH MACHINE LIKE GOOGLE where IT ='s NO CUSTOMER SERVICE AND YOU CAN GO GET FU%KED VIA EMAIL!

    Think thats enough nah come on...I do have forty domains sitting on my reseller Hosting account don't I....yep bastards got into that as well and thought they would play around some....STILL have not managed to get access to that cpanel yet the hosting support totally sucks!

    Now is anything else left????

    Yes of course my clickbank account silly me.
    Lets all go into that and change a few things like passwords and the payment to details etc? Not sure just what they have done yet to be honest as I still cant get into the account and because I have had no reply from clickbank support!

    Guys I need some advice and help if possible.
    1. What can I do regards the disabling of my google mail account. Anything?

    2. What recourse or thing can I do to actually 'TALK" with someone at google who will listen and then look at all this again and I hope re instate things?

    3. Whats the best anti spy ware tool on the market and or spy ware tool and virus tool combination? (My nod 32 set up clearly left me open)

    4. Any suggestions on how best to over come and stop / reduce the impact and damage of what now will be later probably be an attempted Identity Theft situation.

    As it is they have wiped me out totally so fuck all much left to take really....my adwords is gone, my domains are fucked, years of work, my bank account has been cleared of more than I would have liked and they have personal info that only I would know.

    Sometimes I have just had it up to my ears with online shit heads like this.

  2. AboutBizz

    AboutBizz Regular Member

    Nov 24, 2007
    Likes Received:
    wow...sorry dude
  3. Belexandor

    Belexandor Junior Member

    May 4, 2008
    Likes Received:
    Chairman for the non-profit organization to help h
    That's horrible dude. I'm sorry you got hit so hard. I can't advise you on how to deal with google or for retrieving your data and control over your various ventures.

    The only thing that I could recomend is that when you start putting things back together again you seriously consider using N*or*ton 360 as your all in one protection. I've never been breached and I do some VERY risky browsing. I've also tried every modern antivirus/spyware/adaware combination of software and have found 360 the most reliable and trouble free. If you need some help finding it PM me and I'll give you an addy to contact me. I can show you exactly where to get it for free. Least I can do to help you.
  4. CoolAdvisor

    CoolAdvisor Supreme Member

    Mar 24, 2008
    Likes Received:
    Sorry Madeezy...

    IDK how to help you.
    I found drweb is much better than nod32 and AVP.
  5. Essential Clix

    Essential Clix Executive VIP

    Jul 30, 2007
    Likes Received:
    That's absolutely tragic man, very sorry to hear.

    Do you use the same password for everything? If so, I'm hoping it wasn't the guys that hacked our forum that gained access to your password. If they did manage to decrypt it (unlikely), then that could very well be the culprit. Very sorry to hear that man, some people just have no morals.

    If it wasn't the hackers who gained access to your password, then you may have a trojan or keylogger installed somewhere. NOD32 really is good stuff, as is Kaspersky. But even they can be evaded with custom made/manually packed malware. Do you have a firewall installed? That will usually catch malware that's trying to dial home, even with custom trojans/rats made to evade AVs. Personally, I've found that Look 'n' Stop works well, as does Agnitum Outpost Pro. Antivirus programs wont always catch those things, and that's why you need the firewall -- to take control of which programs you want to have Internet access. And if it wasn't a trojan/rat at all, and was a result of us being hacked and your password being compromised, then no software you have on your end would have helped at all... I sincerely hope this wasn't the case, but is a good example of why to never use the same password for multiple accounts. I suggest you get a program like Roboform and use it to manage all of your passwords. It will generate random passwords hash strings and store them in the program for you. It will let you auto-login to those sites without having to remember or type your password in.

    Keep talking with paypal to see what else they can do. And keep trying to contact Google as well, regardless of what they say. If the information inside your email account is valuable enough, maybe even hire a lawyer to help you out? Not sure if they would be able to do anything or not, I've never fully read the Gmail TOS...

    For now, download and run Spybot, SUPERAntiSpyware, and damn near any other antispyware tool you can find. Click this link and run the Kaspersky online scanner for free: http://www.kaspersky.com/virusscanner

    Good luck.
  6. ajaj

    ajaj Registered Member

    Jan 6, 2008
    Likes Received:
    You must feel like crap right now but I just want to wish you good speed in getting yourself organized and back on track :D

    Whenever I signed up for a new acount anywhere, I used to email myself the info to my main email address (regardless of which email address I signed up for the offer/site). Subject line would be 'SignUp - yahoo -screenName' ... etc. So I would have all my stuff online, like all my blackhat related accounts (yahoo, google, gmails, host, squidoo, feedburner.. EVERYTHING.. lol) and could search for it easily.

    Its good because the info is available to me at anytime, but then I thought.. what if I loose this account in some way. So, i gathered all the info and saved it to my comp. I should probably go ahead and delete all that info I have saved online, huh? It would truly suck to loose some of this stuff. Talk about being paralysed.

    Any one else do this?

    Edit: Note to self... Remove any important stuff that I have from the email address account that I signed up to with this site. Thanks Essential Clix for the idea.

    Edit 2: Wait nevermind, the email user name or passwords are not the same.. sorry I'm not thinking clearly ! But I should remove any thing I need from all my email accounts that I think I might miss if it's gone and print them offline for my own sake.. lol
    Last edited: May 20, 2008
  7. yragcom1

    yragcom1 Junior Member

    Mar 20, 2007
    Likes Received:
    Yeah that sucks. I had my Gmail hacked a few months ago. I had the same pass for everything. The guy hacked my eBay account, and tried to run a auction scheme, and he tried to buy something on Google with my Google Checkout.

    I think the saving grace was the fact that my Adwords account was connected. I simply called them and said "If you're telling me I have to wait 4-5 days to get back into my GMail account, I'm telling you that if this hacker uses my Adwords account and runs up a bill, I'm not paying it."

    Oh, Google jumped like a day old Marine private when I said that. I was back in my account within four hours.

    Of course, it took me a good six months, numerous phone calls to Google, and a assurance to them of a overall malware check on my computer to get my Adwords account back up...

    Now, they are REALLY pushing Google accounts. But if that's any indication of what happens with Google accounts, I'm not putting all my eggs in one "Google Account" Basket.
  8. hereslookinatya

    hereslookinatya Newbie

    Mar 3, 2008
    Likes Received:
    Man, that really sucks.

    I pull everything off the web and use Roboform. You can even store your emails
    in safenotes and everything is encrypted. You can sync it over to a usb
    drive and take it with you if you want.

    I know there is also an open source counterpart to Roboform but I don't remember the name. I'm sure someone on here knows about it.

    I don't like Google having access to any of my email. I use other means when
    necessary. Big G just feels like Big Brother to me.

    I wish I had some wisdom to help with what you are up against. I'd be puking my guts out if that happened to me.

    So sorry!
  9. Madeezy

    Madeezy Registered Member

    Mar 29, 2008
    Likes Received:
    Wow just came in and saw so many posts and advice.

    Thanks Guys I will spend some time going over them and post back.

    Thanks Again those who posted.
  10. theblackhat

    theblackhat Regular Member

    Feb 24, 2008
    Likes Received:
    contact some hacker, pay the price and get your account back..
    thats the best if you think your account is worth it..
  11. moneykz

    moneykz Junior Member

    Mar 8, 2008
    Likes Received:
    Try this trick next time.

    and then back the data up on a usb key.

    Always generate passwords from the roboform key generator.
  12. The Scarlet Pimp

    The Scarlet Pimp Senior Member

    Apr 2, 2008
    Likes Received:
    Chair moistener.
    Glad I don't run Windows... :eek:
    That OS always gets hacked into the stone age.