So this happened to my friend, I’m a student of system administration and I’m curious how this could’ve happened.
He tried to use a program to activate his OS illegitimately. He was very careless and downloaded the first link he found on his Google search and executed that.
He got his Steam account stolen, League of Legends accounts, social media accounts, etc.
Anyway, I helped him reinstall his OS, deleted all partitions, made new ones, told him to change all his passwords, etc. He got his accounts back eventually.
What makes me wonder is how they could’ve stolen his accounts. He executed the program then turned off the computer and went to work, when he came back it was all gone.
Couldn’t have been a key logger because he didn’t type any credentials for them to steal (according to him).
Remote access? But how could they access his PC if it was shut off during the time he was at work?
Does this mean that there’s a file in Windows that stores your credentials?
They changed the email on his Steam account. But how could they have done this without triggering some sort of alert? Steam always sends you an email requiring verification when you log in from a computer with a different IP.
Same with the other accounts, I don’t know if he was using a different password for each account, but he’s not very careful so let’s assume he used the same email and password everywhere, so if they get one of his accounts they can access all of them.
But still how did they get his email and Steam, when he never typed in those credentials and assuming they weren’t stored anywhere in the system. How could this have happened.
Sorry if it’s a bit of a noob question, but I’m very curious.
He tried to use a program to activate his OS illegitimately. He was very careless and downloaded the first link he found on his Google search and executed that.
He got his Steam account stolen, League of Legends accounts, social media accounts, etc.
Anyway, I helped him reinstall his OS, deleted all partitions, made new ones, told him to change all his passwords, etc. He got his accounts back eventually.
What makes me wonder is how they could’ve stolen his accounts. He executed the program then turned off the computer and went to work, when he came back it was all gone.
Couldn’t have been a key logger because he didn’t type any credentials for them to steal (according to him).
Remote access? But how could they access his PC if it was shut off during the time he was at work?
Does this mean that there’s a file in Windows that stores your credentials?
They changed the email on his Steam account. But how could they have done this without triggering some sort of alert? Steam always sends you an email requiring verification when you log in from a computer with a different IP.
Same with the other accounts, I don’t know if he was using a different password for each account, but he’s not very careful so let’s assume he used the same email and password everywhere, so if they get one of his accounts they can access all of them.
But still how did they get his email and Steam, when he never typed in those credentials and assuming they weren’t stored anywhere in the system. How could this have happened.
Sorry if it’s a bit of a noob question, but I’m very curious.
Facebook
Twitter
Instagram