Binance Square
Accueil
Notification
Profil
Articles tendances
Les actus
Centre pour créateur
Paramètres
LIVE
LIVE
kaymyg
--27 views
Stay #SAFU on X and other socials. @JasonYanowitz on X narrates his #hack odeal. I got hacked yesterday. At the risk of looking foolish, I'll share how it happened so you can avoid this nightmare. For the past few weeks, people have been trying to get into my accounts. #Crypto accounts, email, twitter, etc... every few days I get an email that someone is trying to access one of my accounts. Thankfully I have non-text #2FA set up for everything so nothing got hacked. So when I got back from dinner last night and saw this email, I panicked. Someone in North Cyprus had finally managed to hack into my account. I guess my security wasn't strong enough and they found a loophole. I clicked the link to "secure my account". I entered my username and password, updated to a new password, and voila: I'm back in. Crisis averted. Or so I thought. Moments later, I got an email saying my email address had been changed. This was the real hack. I was now officially locked out of my account. So how did this happen? It turns out the original email, which looks incredibly real, was not so real. Most email clients hide the actual address. But when you expand it, you can see that this email was sent from "verify@x-notify.com" Fake address. I got phished. Very foolish mistake. I don't open Google Docs when they're sent to me. I don't click links. I typically check addresses. But Friday 8pm after a long week, they got me. I am aware this thread exposes a pretty dumb mistake but if I can save one person from this same mistake, it's worth it. Some takeaways: - Don't click links - If you do click a link, review the actual email address - Set up non-text 2FA on everything - If you've done that, trust your own security process - If you think you've been hacked, slow down and think about how this could have happened Big thank you to @KeithGrossman and some folks at X for helping me get my account back so quickly. If you're still reading, go read the self-audit series from @samczsun. And this best practices from @bobbyong. Lot more you can do but start there. #phishing

Stay #SAFU on X and other socials.

@JasonYanowitz on X narrates his #hack odeal.

I got hacked yesterday. At the risk of looking foolish, I'll share how it happened so you can avoid this nightmare. For the past few weeks, people have been trying to get into my accounts. #Crypto accounts, email, twitter, etc... every few days I get an email that someone is trying to access one of my accounts. Thankfully I have non-text #2FA set up for everything so nothing got hacked. So when I got back from dinner last night and saw this email, I panicked.

Someone in North Cyprus had finally managed to hack into my account. I guess my security wasn't strong enough and they found a loophole.

I clicked the link to "secure my account". I entered my username and password, updated to a new password, and voila: I'm back in. Crisis averted. Or so I thought. Moments later, I got an email saying my email address had been changed.

This was the real hack.

I was now officially locked out of my account. So how did this happen? It turns out the original email, which looks incredibly real, was not so real. Most email clients hide the actual address.

But when you expand it, you can see that this email was sent from "verify@x-notify.com" Fake address. I got phished. Very foolish mistake. I don't open Google Docs when they're sent to me. I don't click links. I typically check addresses. But Friday 8pm after a long week, they got me. I am aware this thread exposes a pretty dumb mistake but if I can save one person from this same mistake, it's worth it.

Some takeaways:

- Don't click links

- If you do click a link, review the actual email address

- Set up non-text 2FA on everything

- If you've done that, trust your own security process

- If you think you've been hacked, slow down and think about how this could have happened

Big thank you to @KeithGrossman and some folks at X for helping me get my account back so quickly.

If you're still reading, go read the self-audit series from @samczsun.

And this best practices from @bobbyong.

Lot more you can do but start there. #phishing

Avertissement : comprend des opinions de tiers. Il ne s’agit pas d’un conseil financier. Peut inclure du contenu sponsorisé. Consultez les CG.
0
Découvrez les dernières actus sur les cryptos
⚡️ Prenez part aux dernières discussions sur les cryptos
💬 Interagissez avec vos créateur(trice)s préféré(e)s
👍 Profitez du contenu qui vous intéresse
Adresse e-mail/Numéro de téléphone
Créateur pertinent
LIVE
kaymyg
@kaymyg

Découvrez-en plus sur le créateur

(forbes) Forbes lists 20 "zombie tokens" with a market value of more than $1 billion, including: XRP, #ADA , #BCH , #LTC , ICP, ETC, XLM, STX, KAS, THETA, FTM, XMR, AR, ALGO, FLOW, EGLD, BSV, MINA, XTZ, EOS. For example, XRP has a market capitalization of $36 billion, and #XRP network transaction fees last year were only $583k.
--
The Dubious Launch of #BRETT Token Raises Eyebrows
--
(lookonchain) 2 wallets whitelisted by #Brett Deployer made 890.6 $ETH ($3.14M) with only 0.034 $ETH($102), a gain of 30,830x! What an amazing gain! Wallets"0x1f72" and "0x8996" spent 0.034 $ETH($102) to buy 172.56M $BRETT. Then sold 122.74M #BRETT for 890.65 $ETH($3.14M) on-chain via multiple wallets. Wallets "0x1f72" and "0x8996" are both whitelisted by #Brett Deployer, which you can check in the transaction hash. https://basescan.org/tx/0x9c18c50988784c501e7ff16e913f2ba5c6b6e504ed6d7d63914326368a278b50… According to @shady_oak1, 139 addresses are whitelisted. https://twitter.com/shady_oak1/status/1783623226557640708 Wallets "0x1f72" and "0x8996" are the two most profitable addresses we track. https://basescan.org/token/0x532f27101965dd16442e59d40670faf5ebb142e4?a=0x1f72007138690934cde217c95c550a8bcb13cccf https://basescan.org/token/0x532f27101965dd16442e59d40670faf5ebb142e4?a=0x899624126624a645d93a3724553893cafce06a66
--
(bantg) f****g #uniswap man. their documentation looks comprehensive on surface level, but it's often wrong if not outright malicious. i can forgive forgetting to tell the devs that you need to pass a tuple, or misrepresenting the return value, but not messing up the argument order. $UNI
--
(degeneratenews) #BITCOIN FEES PAID BY USERS OVER THE PAST 24H SURPASS $78M - A NEW ATH $BTC
--

Dernières actualités

Whales Market Announces Support For Raydium's CPMM Standard On Its Token Issuance Platform
--
DeFiChain Successfully Executes Hard Fork, Introduces New Features
--
Ether's Uptrend Strength Matches May 2021 Levels, Resistance at $4,090
--
Dora Factory Secures $10 Million In Strategic Financing
--
BNB Drops Below 610 USDT with a Narrowed 2.30% Decrease in 24 Hours
--
Voir plus
Plan du site
Cookie Preferences
CGU de la plateforme
Plan du site
CGU de la plateforme
ba-one-trust-cookie