2 weeks ago everything started when I got a notification of the portal '' Trello '' that someone else has logged into my account. Have changed the password several times and after the 3rd time the hacker apparently did not have access to the account.
For almost 2 weeks I get daily 15-20 requests for a password reset on Steam and Blizzard accounts that I have not used in part for 8 years, but just run on my current e-mail address.
Today my email account was blocked and the password was reset because of an irregular access. After a virus scan I found today the program MacOSAgent on my Mac and put it out and thought that he came to my data about this program.
As I just reopened my laptop I realized that someone was about to download the program OAuth or even downloaded it (there was no one on the laptop except me). And apparently you get an authorization on the program over all my access data,
I wonder how the hacker, even after I deleted the virus / trojan (?), Still has access to my desktop and can download programs. How can I now locate and delete the program that the hacker uses to access my laptop and all data (my virus scan can't find anything anymore)? And what are the next steps that I have to take to put an end to everything?
Please urgently for your help, have already changed my passwords several times to the hacker but apparently this does not cause any problems.
I can't tell you how to remove the virus. But what you should do immediately:
- Disconnect the affected laptop from the network.
- Then change all passwords from another device (especially the one from your email account)
- Then have the laptop checked by a specialist and remove the virus or best data backup and completely re-set
If I now save my data completely and reset the laptop completely, then the virus / Trojan are right on the touch again because I almost backed them up. Or am I wrong?
OAuth is not a virus, this is a login procedure. Enter your email address at haveibeenpwned.com and let me know what happened.
Have my studies colleagues also recommended this message unfortunately came out.
Oh no - pwned!
Pwned on 2 https://haveibeenpwned.com/FAQs#DataSource and found no https://haveibeenpwned.com/FAQs#Pastes (https://haveibeenpwned.com/NotifyMe to search sensitive breaches)
The best you only know what you know. Pictures, data, documents etc. Put it on a hard drive and later on the laptop again. Then you are on the safe side.
If you do not want that, you have to turn to an expert, do not know me enough.
Ok, thanks anyway.
Secure WLAN - back up data, reset PC to factory settings, replace all passwords with safer ones.
In this order.
What do I do now with the message that I have been 'pwned' on 2 '' breached sites ''? Do you seem to be familiar with your profession?