Possibly hacked

Similar Messages

• Possibly hacked account

  My friend is having a problem and I post it here because he can't log in. He has been in my contact list for 6 years.
  Dear Skype Staff!
  A few days ago, I ran into a problem and I hope that you will be able to help me in this situation. It seems that my skype account got hacked. For some reason I can still log into my account from my android smarthphone (Automaticly logging in) but from my pc or on the Skype website, i get rejected due to incorrent password which was not changed by me. This skype account is old, I mean at least 6 years old and the e-mail address that I used while registering the account does not exist anymore. I can not require temporary password. If you contact me in private I can give you additional information about my account. I am looking forward to your answer. Account name: szakaly.csaba92 "

  Basically this same thing happened with me too.  I have a Skype contact on my account I just made (linked to my Microsoft Account) that I know I didn't make -- and it has my phone number and MacBook login picture.  Because I took this picture that now mysteriously appears on my phone's Skype account from my MacBook (and haven't used the picture for any purpose), the only possibility is that Skype took my cell number from my Microsoft account, linked it to my MacBook profile picture, and made an account for my phone by itself.  
  Frankly, I'm not happy.  The picture is just one of me and is actually really nice, but I don't want it linked to my cell phone number.  This is a blatant violation of Skype's privacy policy -- nowhere in their privacy policy do they say they will take photos from your computer (especially personally identifiable ones) and make accounts with it.  I tried to merge my Skype account with my phone's account by adding my cell phone number to my Skype account, but no luck.  I can't find any way to access the profile.
  Honestly, I would be happy if I could just edit out the personally identifiable picture of myself.  But Skype doesn't give me the option that I can find... can anyone give any advice?

• Possible hacking of my MacBook

  For the last couple of weeks I keep getting locked out from my email accounts.
  I have several emails on Aol, Hotmail and Yahoo and when I'm trying to log in I'm getting messages like "We have detected unusual activity on this account and for your security are temporarily blocking access. To regain access to this account, please change your password." When I try to change the password as instructed, I get stuck on the security answer part because I answer incorrectly. For some reason the email host's support seems indifferent in helping me as I am being ignored most of the time.
  I am starting to suspect that my MacBook has been somehow hacked or infected with a virus. I know it sounds silly – I mean it's Mac, you don't even need an anti-virus etc. – but I find no other logical explanation. It seems like someone is digging in my email accounts for payment/banking accounts or whatever reason it is that they are doing this.
  I have an excel file buried deep on my hard disk which keeps track of all of my accounts names, passwords and security questions/answers, including those email accounts I am talking about, but excluding any account that is money related – bank accounts, PayPal, etc. There is absolutely no chance of me changing my password or security answer without remembering and I am the only one who uses my MacBook since I live alone. I also have never shared an account's password with anyone else.
  I need help because now I'm afraid to even log in with my payment accounts – whose info I keep on my mind. I sincerely apologize in advance if my post is in an irrelevant section. Thank you for all the help.

  Thank you Thomas for your reply. I think it most likely is a keylogger, as you mentioned, only how could I make sure of it and how could I block it?
  "you've managed to name three of the most often hacked e-mail systems I know of"
  Could you suggest a more safe email host? I only use Aol, Hotmail and Yahoo because they are the most popular hosts besides gmail, I think.
  "if you use weak passwords, or if you use the same passwords on multiple sites, or if you use easily predictable security questions, or if you connect in an insecure way while on an open wireless network, all these things could result in your e-mail account being hacked."
  • I do not use weak passwords, or the same ones on multiple sites.
  • My parents or friends could not possibly predict my security answers.
  • I only connect with my MacBook from my home's WiFi connection. When I am out I simply don't login to any of my accounts.
  Also, I forgot to mention that I never register with websites I think might be unsafe.
  Any other suggestions from anyone who could spend a minute to write are appreciated beyond words.

• Is it possible hacking for skype video chat?

  Hi, need to know.. is it possible to hack the skype video chat..? bcase i could see lots of conversion regarding this.. could you pls. help me.. how safte skype video chat..?

  No, I'm not aware of any webcams that are compatible with the first gen iPad. You can still use Skype, but the person with the first gen iPad won't be seen by the other person, they'll just get audio

• Today my boyfriend said I was imessaging him while at work, how can someone possibly hack into my apple id?

  I got home today and my boyfriend said someone was messaging him from my itouch through imessage, I checked and someone was actually texting him through my itouch! I asked around the house if someone has gona to my to use it but everyone is usually not home and I actually have a passcode on my itouch so its pretty impossible for someone to get into it. I'm wondering if its possible for someone to hack through my apple id and start using it? This is really worryin gme

  Any device signed into that appleid will send / receive messages. I send from my mac, it shows on my iphone and ipod simultaneously. Someone replys to my message and all the devices get the responses. Don't share appleids if you don't want to share personal info.

• Possible hack via google? or virus?

  is it possible to get hacked into or someone to get personal information by visiting a website?
  I got a random pop up on google. I clicked a Wayne Rooney picture under images and i kept getting a pop up saying random stuff like http:etc etc says, this is ur moment then u click ok then another one comes up saying in a seocnd u lose it all etc.
  it didnt allow me to shut down the browser either until the Ok's were selected.
  once like 4 pop ups got closed with those random messages it loaded the picture/image. is it possible a virus got in or by clicking ok it was allowing information to get sent out or a hacker to get in?

  No, the windows you are seeing are scam pop-ups. In FireFox/Preferences/Content - make sure that Block Pop-up Windows is checked. Under the Security button make sure that the top 3 boxes are checked.
  You are not getting pop-ups from Google. You are getting pop-ups by going to sites from a Google seach, that load the pop-ups. Google can't control what a site does when you go there.
  You might do better with knowing what a site does or how it's rated by installing a Add-on for FireFox named WOT (http://www.mywot.com/" or you can use McAfee's SiteAdvisor (http://www.siteadvisor.com/) plugin for FireFox that works with Windows or Mac's.
  These types of plugin Add-ons will provide you with ratings by 3rd parties with color coded flags next to each site listed in a Google search. Sites that have pop-ups, or other low behavior, or bad reputations are usually shown quite clearly in a Google or Yahoo search.
  Too bad Safari doesn't provide any sort of 3rd party ratings for web sites. I don't really care if a site has bad files with trojan horses for Windows, but I still would like to get an opinion about how reputable a site is in general.

• Website changed on local and server possibly hacked?

  Hi all,
  I have a very disturbing problem..our website is wwwDOTselfdefenseproshopDOTcom. I had help here with my Spry Menu that I was building on the left column of my site.
  Just as of yesterday sometime later in the day our website displayed properly as far as the spry menu on the left side.
  As of today (we just looked now) the spry menu is all wrongly displayed and changed and showing old links as well.
  I checked our local files on our machine where I store the files for the site. This is where I first discovered that the spry menu work that I had done was destroyed. I then checked online and found the same.
  Neither my wife nor I have touched the local files nor uploaded any changes to the server for at least a month now.
  Any ideas? was our site and our connection on DW hacked somehow?
  We are at a loss and more than that the work I had done is now gone....
  * NOTE TO GRAMPS if you happen to see this post...you and I had worked on my spry menu bar and I am wondering if you might still have a copy of the files from DW that I had sent you?...
  Thanks to anyone for any help...

  On your home page, I see 2 external links that are definitely messing you up.
  <script src="http://labs.adobe.com/technologies/spry/widgets/menubar/SpryMenuBar.js" type="text/javascript"></script>
  <link href="http://labs.adobe.com/technologies/spry/widgets/menubar/SpryMenuBarVertical.css" rel="stylesheet" type="text/css"/>
  If you put those links into your browser, you'll see why.. Spry is no longer being supported by Adobe.  You'll need to physically download those files from GitHub and save them to your site. 
  Nancy O.

• Translucent impromptu possible "hacker" message interrupts current session, locks MacBook Pro screen and demands that I restart by holding down the power button of my LapTop to turn it off first. Any thought? Could this be another way to mess with us?

  I was listening to a YouTube video on the history of X15 rocket airplanes. All of sudden, out of the blue a translucent back message drops top down, stops the video, locks up my MacBook Pro screen and demands that I restart my lapTop by first holding down my power switch, then turn the lapTop back on. This has never happened to me before. The message was in black & white, and in about 6 languages: English, French, Spanish, Dutch, Japanese, Chinese. Does any one recognize what this might be?
  The Computer turned back on just fine as if nothing had Now I am freeking out that they could be reading my key strokes or something. Could they have used this tactic to install malicious software on my computer by first taking away my ability to do anything about it being that I am not a software engineer? Can any one think of anything simillar? I reported this as a bug to APPLE the regular way, then cleared my Safari cookies, then run software update which returned nothing new as in " your software is up to date at this time."
  Can any one please help?
  A-NmN. 

  Hi stedman1,
  Thank you so much. This seems to make sense to me now. I was freaking out a bit that some hacker could be messing with my MacBook Pro. I will be monitoring this issue from now on as it has never happened before. 
  A-NmN.

• A second issue - no free space on server, possibly hacked?

  On Monday morning, 4/30/2007, I came in to discover the last 80 GB left on our server was filled with 0 GB of free space. All the space had been taken up by a file/directory somewhere in one of the root folders (/etc, /var, etc). I never found out what took up all the space. Looking at our firewall, there had been a very large number of spoofed IP attempts to the server on ports 22 (SSH) and 135 and 139 (part of Samba) from a variety of IP addresses. Looking at the console log, the only thing I could find was the following error message just about every three minutes for hours and hours:
  DirectoryService[55]: Failed Authentication return is being delayed due to over five recent auth failures for username: root.
  So, I ended up rebooting the server after I came in, and shortly thereafter, the free space eventually returned. Was this a DoS attack or were we hacked?
  I could not find any other evidence in our logs that anyone made it in, but I could be wrong.
  Just as a note, I am dealing with a couple of other server issues:
  1) "Could not chdir to home directory /Network/Servers/..."
  http://discussions.apple.com/thread.jspa?threadID=948408&tstart=0
  2) server spontaneously returns to the login screen:
  http://discussions.apple.com/thread.jspa?threadID=948445
  Thanks,
  Tyler

  Why is an unsecured ssh publicly available ?
  Mac OS X or any other flavor of *nix, you must secure ssh.
  Don't make it publicly available (why are you forwarding traffic for port 22 ?), use ssh keys if ssh access is truly needed, and use something other than the default port (most easily done by forwarding it from a different port externally to port 22 internally at your router/firewall)
  Disallow root ssh access.
  http://www.google.com/search?q=securing+ssh
  http://images.apple.com/server/pdfs/TigerServer_Security_Config021507.pdf
  p. 191+

• Possible hacks in flash game

  I've been working on a flash game and it is live on
  http://www.3days2go.nl
  The problem is, that somehow, a few people seem to be able to
  get impossible scores.
  We have tested on various machines with various browsers but
  can't seem to find the loophole some of our players have found.
  Please try to hack/cheat this game. And if you succeed to get
  a score close to 2900 points, please let me know how you achieved
  it.
  Some standard measures we have taken to make the game secure
  is:
  - test if the game is run from the original domain
  - test if the game is run locally or in the browser
  - check start and stop time of the game, against the total
  play time (they are seperately measured)
  - internally test the achieved score with a control number
  before sending it to the server, to make sure it isn't tampered
  with.
  - send all data to the server through ghostwire
  - encrypt the score before sending with ghostwire
  I suspect the problem coming from some timing differences
  between PC/Browser/Plug-in configurations.
  Please let me know if anyone has any other ideas.
  Gert-Jan Brok
  www.fantazm.com

  it seems that difference in framerate accuracy on different
  platforms with different Flash Player versions is the problem.
  Fluctuations in internal Flash timers are at the core of the
  problem.
  This problem/issue/feature is also discussed right here:
  http://www.kaourantin.net/2006/05/frame-rates-in-flash-player.html
  Gert-Jan Brok
  www.fantazm.com

• Iphone lost contacts and possible hack

  My wife's iPhone and iPad keep asking her to provide her password to receive emails and this morning has lost a lot of her contacts including regularly used contacts.  A day ago it said she had overnight changed her used name and password when she had not.  Has she been hacked?  Our ISP is Btinternet.com.
  There is nothing on Apples support site about hacking.  Help.

  I just had the same thing happen.  All of a sudden all contacts and calendar events were gone from the phone.  I sync with Yahoo and I deleted the account, re-established it again, still no contacts or calendar events.  The other problem that cropped up a couple of weeks ago were that my photos were frozen.  I can take pictures just fine, but when I want to review or send them.  The app locks up each and every time.
  The solution?  I powered the phone down and once I powered it back up, everything now works!  Contacts and calendar events are back and the photo app works again!

• Possible hack

  Hi,
  I posted in Remote Desktop but no one responded so I'm posting here. Hope you can help or provide advise.
  In console I found this - does this mean I am being remote accessed?
  Dec 30 00:18:27 administrators-computer-21 sudo: twoadmin : user NOT in sudoers ; TTY=ttyp1 ; PWD=/Users/twoadmin ; USER=root ; COMMAND=/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Res ources/kickstart -deactivate -configure -access -
  Dec 30 00:18:33 administrators-computer-21 sudo: twoadmin : user NOT in sudoers ; TTY=ttyp1 ; PWD=/Users/twoadmin ; USER=root ; COMMAND=/System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/Res ources/kickstart -deactivate -configure -access -
  Dec 30 00:41:13 administrators-computer-21 sudo: twoadmin : user NOT in sudoers ; TTY=ttyp1 ; PWD=/Users/twoadmin ; USER=root ; COMMAND=/usr/sbin/lsof -i
  When typing history in terminal this came up - I did not type this:
    /System/Library/PrivateFrameworks/Admin.framework/Versions/A/Resources/activate Settings; exit
  I made the mistake and connected with ethernet via a simple modem, will obviously be connecting soon via a locked down router.
  If I have in fact been hacked, will a simple reinstall of the OS be enough? I am running Mac Scan but don't think this wil help if someone has
  somehow gained root access.
  Thanks for your help or advise.
  Sean

  please delete - this was answered in remote desktop today. Sorry about a double post.

• Possible Hacker

  Hello All,
  I can see in my log files. That a possible IP address from Italie is trying to get in to my server and also in the server of one of my customers. Now the Question is can I block a IP number totally so that his IP number has no access to the server on any port at all. I have the firewall running but with services specified to any IP. So any suggestions would be helpful.
  Thx in advance.
  Log file:
  Dec 28 20:51:45 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:51:45 server emond[76411]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:51:46 server emond[71]: Host at 202.201.224.111 will be blocked for at least 15.00 minutes
  Dec 28 20:51:46 server emond[76417]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:51:48 server imaps[75567]: Expunged 1 messages from user.phebe.Drafts
  Dec 28 20:51:48 server sshd[76414]: CFPreferences: user home directory at /99 is unavailable. User domains will be volatile.
  Dec 28 20:51:48 server /usr/sbin/PasswordService[60]: client response doesn't match what we generated
  Dec 28 20:51:49: --- last message repeated 1 time ---
  Dec 28 20:51:49 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:51:49 server emond[76430]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:51:49 server emond[71]: Host at 202.201.224.111 will be blocked for at least 15.00 minutes
  Dec 28 20:51:49 server emond[76436]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:51:52 server sshd[76433]: CFPreferences: user home directory at /99 is unavailable. User domains will be volatile.
  Dec 28 20:51:52 server /usr/sbin/PasswordService[60]: client response doesn't match what we generated
  Dec 28 20:51:53: --- last message repeated 1 time ---
  Dec 28 20:51:53 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:51:53 server emond[76450]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:51:53 server emond[71]: Host at 202.201.224.111 will be blocked for at least 15.00 minutes
  Dec 28 20:51:54 server emond[76456]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:51:56 server sshd[76448]: CFPreferences: user home directory at /99 is unavailable. User domains will be volatile.
  Dec 28 20:51:56 server /usr/sbin/PasswordService[60]: client response doesn't match what we generated
  Dec 28 20:51:57: --- last message repeated 1 time ---
  Dec 28 20:51:57 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:51:57 server emond[76469]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:51:57 server emond[71]: Host at 202.201.224.111 will be blocked for at least 15.00 minutes
  Dec 28 20:51:57 server emond[76474]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:00 server sshd[76471]: CFPreferences: user home directory at /99 is unavailable. User domains will be volatile.
  Dec 28 20:52:00 server /usr/sbin/PasswordService[60]: client response doesn't match what we generated
  Dec 28 20:52:01: --- last message repeated 1 time ---
  Dec 28 20:52:01 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:52:01 server emond[76487]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:01 server emond[71]: Host at 202.201.224.111 will be blocked for at least 15.00 minutes
  Dec 28 20:52:01 server emond[76490]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:04 server sshd[76491]: CFPreferences: user home directory at /99 is unavailable. User domains will be volatile.
  Dec 28 20:52:04 server /usr/sbin/PasswordService[60]: client response doesn't match what we generated
  Dec 28 20:52:05: --- last message repeated 1 time ---
  Dec 28 20:52:05 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:52:05 server emond[76507]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:05 server emond[71]: Host at 202.201.224.111 will be blocked for at least 15.00 minutes
  Dec 28 20:52:05 server emond[76512]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:08 server sshd[76508]: CFPreferences: user home directory at /99 is unavailable. User domains will be volatile.
  Dec 28 20:52:08 server /usr/sbin/PasswordService[60]: client response doesn't match what we generated
  Dec 28 20:52:09: --- last message repeated 1 time ---
  Dec 28 20:52:09 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:52:09 server emond[76525]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:09 server emond[71]: Host at 202.201.224.111 will be blocked for at least 15.00 minutes
  Dec 28 20:52:09 server emond[76531]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:18 server imaps[75567]: Expunged 1 messages from user.phebe.Drafts
  Dec 28 20:52:35 server emond[71]: Host at by will be blocked for at least 15.00 minutes
  Dec 28 20:52:35 server emond[76554]: DoRunAction (child): setting the uid/gid to 0/0
  Dec 28 20:52:36 server imaps[75567]: Expunged 1 messages from user.phebe.Drafts
  Dec 28 20:55:34 server emond[71]: Host at by will be blocked for at least 15.00 minutes

  Documentation? I don't know that, and am probably not the best person to ask that. Locally, some combination of the the Apple manuals and the man pages and Google, and (for specific topic areas) the project-specific documentation for the particular application or package or product that was included in Mac OS X are the technical resources used. That would be how to research the firewall, for this case.
  In general, the security manual and the command line manual are probably the two manuals most relevant in general, and then you branch out into whichever Apple manual covers the particular topic area.
  The Apple manuals can serve as an introduction to the particular topic area. They'll give you enough to get the component going and particularly also to acquire a few search terms for man -k and for Google and/or for the direct URL for the project site. The Apple manuals do not usually go into much technical depth on any particular topic area. They get you going. Then you go read elsewhere.
  As for dns and IP look-ups and IP networking in general, I tend to use dig -x and whois and such at the bash shell. That's a classic Unix approach for poking around in IP. Most any Unix or Linux networking materials will cover the essential commands.
  As for books, I'd expect that O'Reilly or Peachpit or some of the other vendors have a book or fifty on various of these topic areas, though I've not looked. There are whole huge areas here, whether it's security and cracking, IP networking, bash shell and typical Unix commands, or whatever your particular goal(s). Cricket Liu's DNS and Bind book, for instance, would be recommended if you're looking to learn more about managing and operating dns on Mac OS X Server. afp548 and a few other sites have good reading, too. And aiming the Google "site" keyword at Apple (site:apple.com or site:discussions.apple.com) can help reduce the number of hits and target your query.
  The answer also depends on your budget and how you learn. Some folks learn by flailing around and making mistakes. Some learn by reading books. Some by classroom training.

• Possible Hack job

  I think someone hacked into my account becuase there are apps that show in my purchsed section that are not in my itunes library, and I certainly DID NOT purchase these types of apps.  What do I do? 

  No, the windows you are seeing are scam pop-ups. In FireFox/Preferences/Content - make sure that Block Pop-up Windows is checked. Under the Security button make sure that the top 3 boxes are checked.
  You are not getting pop-ups from Google. You are getting pop-ups by going to sites from a Google seach, that load the pop-ups. Google can't control what a site does when you go there.
  You might do better with knowing what a site does or how it's rated by installing a Add-on for FireFox named WOT (http://www.mywot.com/" or you can use McAfee's SiteAdvisor (http://www.siteadvisor.com/) plugin for FireFox that works with Windows or Mac's.
  These types of plugin Add-ons will provide you with ratings by 3rd parties with color coded flags next to each site listed in a Google search. Sites that have pop-ups, or other low behavior, or bad reputations are usually shown quite clearly in a Google or Yahoo search.
  Too bad Safari doesn't provide any sort of 3rd party ratings for web sites. I don't really care if a site has bad files with trojan horses for Windows, but I still would like to get an opinion about how reputable a site is in general.

• Possible hack for iMac not connecting at startup with WPA2

  Hi,
  Like many others whose iMacs fail to connect at restart or after waking from sleep, I've tried all the suggestions with no improvement.
  Then I tried the following (this is AirPort specific, but other routers may have the same setting):
  1. Open Airport Utility
  2. Click the AirPort Icon
  3. Click the Wireless tab
  4. Click Wireless Network Options...
  5. For WPA Group Key Timeout, change the popup from hours to days and enter e.g. 30 days
  6. Click Done
  7. Click Update and the AirPort will reboot.
  After it comes back online, try rebooting your mac. YMMV, but if you're like me, the connect at startup issue will be fixed (at least for 30 days

  Hi, this has worked for a few...
  Make a New Location, Using network locations in Mac OS X ...
  http://support.apple.com/kb/HT2712
  10.7…
  System Preferences>Network, top of window>Locations>Edit Locations, little plus icon, give it a name.
  10.5.x/10.6.x/10.7.x instructions...
  System Preferences>Network, click on the little gear at the bottom next to the + & - icons, (unlock lock first if locked), choose Set Service Order.
  The interface that connects to the Internet should be dragged to the top of the list.
  Instead of joining your Network from the list, click the WiFi icon at the top, and click join other network. Fill in everything as needed.
  For 10.5/10.6, System Preferences>Network, unlock the lock if need be, highlight the Interface you use to connect to Internet, click on the advanced button, click on the DNS tab, click on the little plus icon, then add these numbers...
  208.67.222.222
  208.67.220.220
  Click OK.
  Also, turn off IPv6:
  System Preferences » Network » AirPort » TCP/IP tab » Configure IPv6
  Or whatever Interface you use.