Hacked and Stolen on Hive 14 h Ago

in #leofinance8 months ago (edited)

Dog What GIF by MOODMAN

I have just noticed almost 200 liquid Hive have been taken from my Hive account by @sepa666 . I never made this transaction.

Transfer
14 hours ago
187.930 HIVE
@zpek -> @sepa666

Also, my Hive Wallet has been hacked. I do have access to my Hive account, but liquid Hive is also missing from my Hive Wallet. This happened after I've been playing Kryptogamers . I click on nothing, no link but that in the last 24h. I haven't even used my laptop since I closed my ecency tab, just after getting out of Kryptogamers 14 hours ago. I rarely use it anyway. As for the app, I have no Hive app on my phone.

Operation
Tokens Transfer
Date
04/17/2024, 6:05 PM
Transaction ID
4e95cc88b108d25328268c987fcd34306205414f
Sidechain Block
37616297
From
zpek
To
sepa666
Amount
78.50416326 SWAP.HIVE

I've used @kryptogamers a while back and just after that my LinkedIn account got hacked. I think that site might be the problem. And if so, why is it still present in Hive's ecosystem?

@hivewatchers @klye Can anyone help?

Thanks.....

I shall be changing my keys now, but please don't give me this answer, but try to fix the problem, this is the second time I get hacked by using Kryptogamers, which stands as a reliable site in the Hive ecosystem.

"sepa66" is a well-known, hacker account.
He likely acquired your account by having access to your Google mail.

Do not give me this answer:

"bdhivesteem" is not a dangerous account. It is an account used by Binance.

Use another computer to change your Hive keys, Google password, and passwords to your important accounts like banking
Run antivirus on the current computer that was used when you got hacked
If you can't change your Hive keys please check who your recovery account/trustee is
Contact your recovery account/trustee to begin the recovery procedure
Once you have keys to the account and can log in, check your withdrawal routes
If you see "1" instead of "0" in your withdraw route line, use Ecency wallet to remove it (it means any power down will go into the hacker's account)
Let us know as soon as possible when done or when started https://discord.gg/DbrVsHMw5u

PS: The current recovery agent is @appreciator. I've never set this. So I'm wondering: How come??? Changed.

Weight 1? How do I solve this?

Sort:  

Scan your system, change your passwords make sure you get new discord keys etc etc

Crappy that you got hacked.. have to make sure your keys are secure.. I can't remember who runs @appreciator but maybe look into it and see if they can help you set new owner keys

Thanks. I did all that. Here: the request tab is still gray, it doesn't work: https://recovery.hivechain.app/ I tried to change the keys myself and fk it up, I lost all but two that I managed to put in my keychain wallet. No owner key, no master key...now I cannot do anything. I just managed to put the posting key and the memo, then I closed the file without saving the new ones...so, I hope @appreciator can help me at least to give me a new set of keys an check if my account is still under the hacker's influence. Thank you, Klye! Appreciated! I think I will just get out of Hive and let others know that this is not a safe place...the only thing I did with this computer over the last week was to come in Hive, check posts and play @kryptogamers I got hacked 2x in the last 3 months, each time just after playing this game that is still in the Hive ecosystem, one time my LinkedIn got hacked and now my Hive account...

Never give any key to a site you don't 100% trust.

even then if the site operator isn't malicious, if they have a security breech and poor practices in storing user data, your keys might be in their DB as plain text which could then be stolen.

HIVE is safe provided you don't ever share your keys online. Use Hive Keychain browser extension whenever you can.. If I site asks for your keys directly it's a huge security risk.

Hopefully you start thinking in a way that protects you from hacks.. Do not trust anything online and never click links that seem off or offer something too good to be true.

Try running ESET antivirus and malwarebytes scans just to make sure your system isn't compromised.

Have a good day sir.

Hi.

Your account was likely hacked because you saved a password in your email.

You need to change all your passwords so the account could be removed from the blacklist.
I also recommend removing any emails that have passwords saved and checking the computer for malware.

You can try recovering the account if you lose the owner's password.

https://reazuliqbal.com/HiveAccountRecovery/

Your account recovery is set to "appreciator".

@hivewatchers

I saved no password on my email or on any of my devices, but on my external hardware that I rarely use.
The hack came after using a Hive approved and included website @kryyptogamers #kryptogamers and this is the second time. The first time, they hacked my LinkedIn profile, now they did it on Hive. The use that hacked me is not new on Hive and you are aware of him and his behavior for quite a while as I've noticed.

I have to generate a new owner key for recovering the account, which I can't do it. I only have access to my posting and memo key...I am stuck and don't know what to do. I want to submit the recovery request but cannot without this

I am sorry that this has happened.
If you do not have your passwords and cannot go through recovery, then the account cannot be recuperated.