Trevon James Hack - In Depth Mobile Carrier Security Talk
I did a new video expanding on the topic of how someone could pretend to be you to activate another phone on your line with your mobile carrier to enable themselves to get past your 2FA on your Google account and other accounts.
No system is perfect for customer service and people are making a living off committing fraud. Again I'm sort of 50/50 on whether the @craig-grant and @trevonjb hacks are real but this explanation of how someone could pretend to be you and access all your accounts can really happen. Just don't let it happen to you!
Happy Thanksgiving!
Earn $10 Of Free Bitcoin From Brian Phobos!
Thank you for reading my post and please consider following me @brianphobos
Their hacks doesn't seem fake, regardless whether real or not it is a grim reminder to always safe keep your keys and wallet while spreading them apart. I for an example have spread myself a lot more then I probably should and at the end of the day you can never have TOO MUCH security on your money! :)
That's true. Some of the stuff I do as well is inconvenient in the name of security but it is better safe than sorry.
when you are out in the open like that you are calling a lot of attention...
Yeah I'm sure there was a whole horde of bit hungry hackers after them.
yup! especially when he got a message with family members name of the hackers etc... most probably it was a call center team ...
yeah probably so
I watched the video yesterday of the Bitcoins being (supposedly) stolen. God, it was like pulling teeth! I kept thinking "GET ON WITH IT!" still seems a bit fishy to me but not impossible.
Yeah I'm with you. I'm 50/50 for sure one whether it happened but there is one thing for sure. Even though I have looked at this type of thing and thought about it a lot it made me even realize that some of the stuff that I have done with some of my e-mails was a bit lazy in a way. And I have like 15 e-mails but some of them get forwarded to a main address. So if this sort of thing was carried out they could get a little further along now that I'm thinking about it more. They still wouldn't get anything but they might change a password...etc.
The thing is, to achieve what happened, as it was explained, is actually pretty labour intensive.
1st you've got to know his mobile number once you have that it's a ball-ache to replicate on another phone, cloning would be much easier and smoother. Then get the password changed on the Google account. Then start trawling through all those rubbish emails about what you did on Saturday and where you are going on holiday to find the one email that has the Bitcoin Wallet username and password. (A better scenario would be that it was stored in a file on his Google Drive) tbh that could take a day or so.
Now if you've cloned the phone potentially you could have the login details already but then you'd probably have the login details to the Bitcoin wallet as most silly people log into sensitive stuff with that device and mobiles are so easily lost or stolen. #facepalm
There's also another poignant question: Why, having gained control of the Bitcoin wallet, wouldn't Mr thief.
A. Not clean the account out regardless of value.
B. More importantly, why would Mr thief not change the password once they'd gained control?
Like I said, I'm not saying it's fake although I do think that if it's true then it seems to be personal, it seems to me it is someone who knows him?
The people who did the "hack" probably didn't have the ability to clone the phone.
I bet he did have something on his Google drive. I feel like it is pretty common.
In regards to chaining the wallet password. If the hack was real I think once they had the keys they had access to move the coins to another address and they could have used Blockchain.info, Electrum, Exodus....etc to allow them to move the coins but the wallet the hackers would have brought up on their machine wouldn't force them to change the password. No matter what they set the password as on their Exodus wallet it wouldn't change the password on Trevon's local computer.
The only thing I can think of regarding the fact that the hacker didn't take the Litecoin from Trevon's wallet was that the hacker didn't have the Private keys for the Litecoin.
I have a feeling that he might have exported his private keys for his Bitcoin holding in his Exodus wallet and put that in some file on his Google drive or emailed it to himself around the time of the Bitcoin Cash fork in an attempt to get to the Bitcoin Cash quick using the Electron Cash wallet or some other means. That would sort of make sense as to why they weren't able to move the Litecoin if this is real.
It was a joke, new promotion to pitch there new program they are launching lol
Well hopefully Craig isn't in charge of developing the platform. His BCC School website looked like a 7th graders my space page from 2003. http://bcc.school/
LOL
I didn't even bother looking and after your comment...not a chance! lol :P