1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Rapidshare account hacked WTF

Discussion in 'BlackHat Lounge' started by midknightg, Apr 7, 2009.

  1. midknightg

    midknightg Registered Member

    Joined:
    Apr 26, 2007
    Messages:
    97
    Likes Received:
    35
    Occupation:
    BlackHat Marketing
    Location:
    online
    I just noticed yesterday that the security lock on my account was active.
    Found this a little bizarre since I didn't activate it. Well, when I click to have a new code sent to my email of course it never arrived. I then emailed support to tell them of possible hack. they emailed me this morning and this was their reply

    Not much help seeing that the reseller is not going to have access to the security code or the ability to change it!
    However I did manage to find out the new email the hacker changed it to.
    My question is what should I do from this point. It doesn't appear like they are sharing access or even using it heavily....yet.
    any suggestions would be great.
     
  2. r00t

    r00t Regular Member

    Joined:
    Dec 27, 2008
    Messages:
    310
    Likes Received:
    889
    Location:
    Mighty Europe
    Most probably you've been downloading warez, and got a stealer binded.
    Be careful with the stuff you get.

    Have you tried contacting your reseller?
     
  3. chickuzt

    chickuzt BANNED BANNED

    Joined:
    Apr 19, 2008
    Messages:
    112
    Likes Received:
    97
    Haha, good luck. By the way watch out for phishing websites (RS clones). Premium RS accounts are my specialty actually. I sell them on IRC's networks in the hundreds.

    How to prevent this from happening...

    -enable the security lock
    -watch out for pirate/warez sites that redirect you instead of giving you a direct link to rapidshare like rapidshare.com/files/Gay_anal_sausagefest_part1.rar vs. ***********/askjdh
     
  4. chickuzt

    chickuzt BANNED BANNED

    Joined:
    Apr 19, 2008
    Messages:
    112
    Likes Received:
    97
    Oh and what r00t said, worst case scenario you got a pass stealer. This would likely collect all passwords you enter in Mozilla and IE, encrypt them, and upload them to an FTP somewhere. If it is a stealer your AV will most likely not detect, they are customly coded and sold for thousands in the blackmarket.
     
  5. midknightg

    midknightg Registered Member

    Joined:
    Apr 26, 2007
    Messages:
    97
    Likes Received:
    35
    Occupation:
    BlackHat Marketing
    Location:
    online
    how would you go about detecting something like this?
     
  6. Whookidive

    Whookidive Registered Member

    Joined:
    Dec 3, 2008
    Messages:
    81
    Likes Received:
    62
    If it's FUD you can't. Unless you have a special program that monitors all incoming and outgoing connections in detail. But then again you must have a good knowledge of networking if you wanna find out if there's some connection with a filthy site.
     
  7. r00t

    r00t Regular Member

    Joined:
    Dec 27, 2008
    Messages:
    310
    Likes Received:
    889
    Location:
    Mighty Europe
    Actually stealers are damn cheap. You can get a FUD stub for 10$ or less.
    They get passwords from IE, FF, Filezilla, MSN, Steams, and the list goes on and on.
     
  8. midknightg

    midknightg Registered Member

    Joined:
    Apr 26, 2007
    Messages:
    97
    Likes Received:
    35
    Occupation:
    BlackHat Marketing
    Location:
    online
    problem solved now i got to decide what to do with the email and ip of the perp
     
  9. tousif1988

    tousif1988 Junior Member

    Joined:
    Jan 31, 2009
    Messages:
    105
    Likes Received:
    77
    Location:
    BHW
    why don't you use the kaspersky antivirus........its the best available.....................it blocks almost all the outgoing attacks by any worms or viruses......even pass stealer.....it is a must for every webmaster......as we are working hard to make money and some one easily takes it with some filthy knowledge of hacking....get the new version......rapidshare account is not the real matter.....what would have happened if he would have hacked ur paypal or any other bank account..........
    best of luck