Looks Like A Wave of Account Hacking / Spam

13 min read

Deviation Actions

RobynRose's avatar
By
Published:
55K Views
Here is a reminder. I am not a staff member. I am not even a community volunteer. I am just a regular member.
I am not responsible for the staff of Deviantart, nor do I represent them.

PLEASE SEND YOUR QUESTIONS AND COMPLAINTS TO THE ACTUAL STAFF OF DA

CEO
:iconspyed:

COMMUNITY TEAM
:iconaunjuli: :iconayame-kenoshi: :icondamphyr: :icondxd: :iconewm: :iconfourteenthstar: :icongodofodd: :iconikue: :iconkozispoon: :iconmambito1320:
:iconmoonbeam13: :iconrealitysquared: :iconrenonevada: :iconmidnightexigent: :icony2jenn:

CREATIVE TEAM
:iconbionikdesign: :iconendosage: :iconestevancarlos: :iconmarioluevanos: :iconzachb67:

DEVELOPMENT TEAM
:iconadahacker: :iconalisey: :iconartbit: :iconbanks: :iconchris: :icondevlant: :icondgera: :icondrigh: :icondrommk: :iconejsm8:
:iconfartprincess: :iconhelloandre: :iconiconocrash: :iconinazar: :iconkemayo: :iconkojik1010: :iconkouiskas: :iconmccann: :iconmicahgoulart: :iconmudimba:
:iconmuteor: :iconpgorniak: :iconraincoastchris: :iconrandomduck: :iconrdonaldson: :iconrush: :iconsgrahamuk: :iconshadowhand: :iconshahyarg: :iconxraystyle:
:iconyury-n: :iconzombiecoder:

OPERATIONS
:iconcloud9hoodie: :icongzobel: :iconireneadler76: :iconjeanpat: :iconlasgaviotas: :iconthelaurenverse: :iconmakepictures: :iconmikea: :iconsgonzalez:

THESE ARE THE PEOPLE WHO ARE IN CHARGE OF THE SPAM WAVE. PLEASE ASK THEM FOR AN OFFICIAL STATEMENT ON WHAT IS HAPPENING.

UPDATE:
I've added an FAQ on computer security below.
UPDATE: I've added a section on What is a "Keylogger virus" and how to get rid of it below.

Today I've deleted nearly 20 spam comments, advertising anything from "work at home" to "lose weight now" with a link provided.

They look like this

Spamalot by RobynRose



If you get comments like this, DO NOT CLICK ON THE LINK. REPORT THEM AS SPAM.

Spamalot2 by RobynRose



It looks like the link is hijacking legit accounts instead of creating new empty ones, to post, so be very aware. You could be getting bad links from friends ar accounts with actual content like avatars and art. It's not just empty accounts with weird number-names that are a part of this spam-wave.
If your friend sends you something suspicious, send them a message back asking about it instead of just opening it.
If you have clicked anything suspicious, as always, run a virus check and change your password.
It looks like the suspicious links end in ".tk" so roll your mouse over the link to see the extension. However, that doesn't necessarily mean other extensions are automatically safe ".com" ".gov" etc.
Clicking on the link may take you to a blank page with no content on it. That is not the purpose of the site. The purpose is to install a keylogger onto your computer. if you clicked on any links, you may have a keylogger virus.

Be on the lookout during a phishing wave. Hopefully DA will deal with the issue behind the influx of spam soon.

If you are getting messages that look similar to this with a mysterious link attached, they are probably part of the phishing scam. This list is not comprehensive, so be aware of things that look similar.

Look what i found here
Look what i found

Start To Make Real Money Online today!
How to Make Money At Home On Your Computer
Have fun loosing weight the easy way while you make a good second income
Earn Money with your PC
Own Your Own Business
Earn from home. Earn Online.
Take a look at this
Real ways to make money using computers and the Internet
Learn How to Make Money Online
Make money with an internet connection from anywhere in the world
no more strict deadlines
I DID IT!
How to Make Money At Home On Your Computer
Earn from home. Earn Online.

Earn money at home using the Internet
Just look
Im free now
this has been your time to shine

How to get started making money from the comfort of your home
no more strict deadlines
Make Over $100,000+ A Year Working From Home
Earn from home. Earn Online.
Start making money immediately without risk!
I AM FREE NOW
Now Your All Dreams Will Going To Become Reality with Your Own Home Business
100% Pure ACAI with Green tea and more antioxidant capsules
I am finally became Boss
You look like you lost weight in this video
Easiest way to get started making money
I am my own boss
Best weightloss solution to lose 30 pounds in under 1 month!
Your question here
If you don't believe (random name)'s story, look at (random name)! They earn (random money amount) with (url)
I had reached the end of the line I took my chances with this now I make all the calls just picture the possibilities
I had finally hit rock bottom I was able to regain my independence using this these days im making my way to the top take a look at what I mean
I kept telling myself things would get better my expectations were more than exceeded this is proof that miracles do exist seriously consider this
I had tried everything because of this im always one step ahead ive finally reached the top keep this between us
I found an easy answer to our problems. Look at this I already started
I had to prove that I could amount to something I was so lucky to have found this now nobody disrespects me you can have a chance too
I had reached my wits end I cant believe how much this exceeded expectations my success was effortless just wanted to share the wealth




Ok so what is this virus? It's what's known as a Keylogger. A keylogger is a small program that can easily be downloaded onto a computer that can record keystrokes and mouse clicks. This means that it will record when you enter in your username and password into a field, such as DA's login page. A Keylogger virus will forward this information to a thief (either a person, or a program designed to collect usernames, as with this wave of spam). The scary thing about keyloggers is that they're not specific about what they record. If you type your DA password, it will have your DA password. If you type your email password, it will have your email. And inside of your email are often confirmation records of other sites and passwords. So, if you have a keylogger and don't know it, you will be repeatedly giving away multiple passwords to the program.

The nature of this program is why it is important to comletely remove the keylogger BEFORE you change your password. If you change your password while the keylogger is still installed, it will simply send your new password to the collection. And it will probably have your email password now to boot.

How to Detect and Remove a Keylogger

If you suspect you have a keylogger installed on your computer, one way to bypass it is to scramble your password as you type it.

Example: If your password is 55abrahamlincoln55

Then type in "lincoln"

Then click to the begining and add "abrahamlincoln"

Then click to either side and add "55abrahamlincoln55"

A simple keystroke logger will only log your keystrokes as you type them. Typing your password out of order can confuse the program. This is a safety precaution to take if you think you might be infected, it is NOT a way to avoid the keylogger altogether.

Another way to avoid keyloggers is to use your computer's onscreen keyboard.

To type without using the keyboard

<div class="">
  • Open On-Screen Keyboard by clicking the Start button Picture of the Start button, clicking All Programs, clicking Accessories, clicking Ease of Access, and then clicking On-Screen Keyboard.


HELP!


1) If I accidentally click on a link but only go to DA's exit page am I infected?


No. Just leave the page and do not go further. That's what DA's exit page is for.

2) Can I get a keylogger on my mac / android / mobile device?

Unfortunately, I don't know. I only use a PC.

3) Should I hide comments and block them or report them as spam?


Report them as spam. Reporting these comments does three things
- It automatically hides the comment, preventing other users from seeing the links and clicking on them.
- It automaticlaly blocks the user.
- It sends a notification to DA staff to investigate the comment and deal with the spammer.

If you only choose to block and hide, you are not letting DA staff know about the problem with the account. Always report as spam.

4) What sort of security measures can I take?


There are numerous rather effective addons for browsers that can help with security.
NoScript for Firefox and Chrome work by disabling automatic scripts running in the background.
Adblockplus is great for popups and can block some malicious ads.
AVG is a free anti-virus software. I don't use it, and so I cannot comment on how effective it is.
I personally use Norton Internet Security.

As with all of these things, just having the program doesn't necessarily protect you. You need to go in and look at the settings to see what it is allowing and what it is blocking. You can search for guides on what each setting does and how to customize your anti-virus settings.

5) I have kaspersky ( the latest version ) and It says my computer does scans every hour, and everything seems to be in check, and I'm doing a full scan now, and everything is ok, does this mean I'm safe?


I don't know, check your settings to see what it's scanning for. Also see if it has a list of detected and quarantined items. Norton regularly deletes tracking cookies from my PC and lets me know in a report. If it removed a keylogger from me, it would say. But if it didn't, I either never had one, or it couldn't find it.

6) My account has been hacked. I'm only on because the hacker is off. What do I do?


If you cannot scan and remove the keylogger, try to access a PC that is clean (avoid public computers and networks) and change your password. If there is no keylogger, the new password will not be sent to the hacker. Go back to your old device and clear it of the infection using anti-virus software. If it's really bad, you can take it in to a computer doctor, but you'll be paying money.
© 2013 - 2024 RobynRose
Comments1235
Join the community to add your comment. Already a deviant? Log In
Comment Flagged as Spam