Steemit Crypto Academy Contest / S7W6 - Careful, Has your Steemit account been hacked?
Hello Friends, |
|---|
Designed on Canva
As always, the Steemit Crypto Academy community have organized another exciting and educative topic of discussion that would be of utmost benefit to both the old and new Steemians.
For the sixth week, the Moderators and Professors of this great community have presented an interesting topic titled Careful, Has your Steemit account been hacked? by @crypto-academy.
As a user of Steemit, you should always be aware of the potential risks of using the platform. Unfortunately, hackers and scammers have been known to take advantage of unsuspecting users.
It is important to be vigilant and protect yourself from Steemit hacks and phishing links. Follow this article, as I would be sharing my hack experience, as well as what you can do to protect yourself and your account from such activity.
Have My Steemit Account Been Ever Hacked? |
|---|
Just like any ignorant and security careless steemian, I have equally had my own share of account hacks, which I would be sharing with us in this article.
It was on a Saturday evening, at around 23:00 UTC, I logged in to my Steemit account and navigated to my wallet, where I got the shock of my life.
 |  |
|---|---|
My 50.519 liquid STEEM was missing, and to worsen the whole situation, I observed that a Power down had been initiated in my wallet. At first, I didn't believe my eyes, and taught it might have been my brain playing with my mind.
After refreshing my page multiple times and discovering that nothing had changed, I realized that this was reality, and my Steemit account has been hacked.
I was destabilized for a while, but I didn't relent, I asked myself what the next step was, and I acted fast to get a solution to my challenge.
My assets were moved to a roqqu wallet with this Momo address (ZXuDJlCm1w7evTfj0jfK), but when I checked through the transactions made on that day, I discovered that a single memo address (ZXuDJlCm1w7evTfj0jfK) has been used to steal my assets and that of my friends within the same time frame (a total of over 136 Steem token stolen).
It was at this moment I realized the hacker was an insider, and probably a close friend of mine. I was right because when I checked for the past transactions made with this memo, I was shocked to my bone marrow, as a very close friend of mine @mahmudubaida131 was responsible for the malicious act.
Mahmudubaida131 is a friend I personally introduced to Steemit, and I taught him every necessary thing he needed to succeed in this great platform. Nevertheless, I took it as a lesson and sorted the way forward.
The first step I took was to stop the power down, and I proceeded to change my account password. I later confronted Mahmudubaida131 the next day which was on Sunday morning. After several exchanges of words and aggression, I collected his phone and recover all the stolen assets, including that of my other friends.
Clicking on links offering rewards on Steemit or any other platform can be a dangerous practice. Fraudulent websites often use such links to try to get users to enter their private keys and other sensitive information, so they can gain access to accounts and steal tokens.
Take for instance on the screenshot above, you could see that a fraudulent website owner created an account with us (@hudsonolden), and is using this account to promote his malicious link by promising an attractive reward to users.
Furthermore, clicking on these links can also spread malware and other malicious software, as such malware can be used to target users’ computers and steal personal information, such as credit card numbers and bank account details. This can result in serious financial losses for users.
By clicking on these links, users are essentially putting their tokens at risk of being stolen by malicious actors. Clicking on dubious links offering rewards on Steemit is not recommended and users should exercise caution when considering such links.
My Opinion And Recommendations On How To Prevent Our Accounts From Being Hacked |
|---|
We've all heard horror stories of people's accounts getting hacked and losing their hard-earned crypto. As a Steemit user, it's important to take the necessary steps to protect your account from being stolen.
When it comes to keeping your Steemit account secure, one of the most important things to remember is to never share your private keys with anyone.
Your private keys provide access to your account and can be used to send funds or make changes to your account. Sharing your private keys with anyone can put you at risk of having your account hacked or stolen.
The first step to safeguarding your private keys is to avoid making them public in any way. This includes not posting them online or sending them via email. If you must share your private keys with someone, use a secure method such as an encrypted messaging app. You should also make sure that the person you are sending them to is someone you trust.
My Steemit account was hacked because I trusted a friend with my phone where all my keys were stored, and the outcome of this ignorance was disastrous.
It is also important to change your private keys regularly, as this will help protect against any attempts to hack into your account.
A VPN (Virtual Private Network) is a great way to protect yourself from online hackers, as VPN allows you to encrypt your internet traffic, making it harder for malicious actors to intercept or snoop on your information.
It also masks your IP address, making it difficult for anyone to trace where you are or what you're doing online. Using a VPN can help keep your personal information and data secure while you're browsing the web, especially if you're using a public Wi-Fi network.
It can also help you access restricted content from anywhere in the world and bypass local censorship.
When it comes to Steemit, using a VPN is highly recommended. Not only will it help keep your data safe and anonymous, but it will also protect you against DDoS attacks.
To get started with a VPN, simply choose a reliable provider and download the software. Once installed, you can switch on the service when needed and enjoy the added security of a virtual private network.
Phishing is one of the most common types of attacks used to gain access to Steemit accounts. Phishing is when a malicious person or group attempts to acquire sensitive information such as usernames, passwords, or credit card details by pretending to be a legitimate source.
It typically involves scammers pretending to be a trusted source, and sending you an email or text message asking you to click on a link or open an attachment. If you do, the scammer can gain access to your account or personal information.
To protect yourself from phishing attempts, it’s important to be vigilant when it comes to suspicious emails and text messages. Make sure to look for any red flags, such as misspellings or strange sender addresses.
One of the most important steps you can take to protect your Steemit account is to keep your computer secure, as hackers are always looking for ways to gain access to your information, so it’s essential to ensure that your computer is as secure as possible.
Here are some tips to help protect your computer from hackers:
Install and regularly update antivirus software, as having a good antivirus program installed on your computer is essential for preventing malicious software from getting onto your system.
Keep your operating system up-to-date, as OS is constantly evolving and new vulnerabilities are often discovered. Keeping your operating system up-to-date ensures that any vulnerabilities that have been discovered are patched.
Install a firewall, as this can help prevent malicious software from gaining access to your computer. A good firewall will block incoming connections, allowing only those connections that you allow through.
Be cautious when downloading files. Before downloading any files, make sure you know where they came from and that they’re safe.
My Opinion On Why Some Accounts Get Hacked |
|---|
It's a sad reality that some Steemit accounts get hacked, leaving users feeling frustrated, violated, and vulnerable. So the big question here is why this happens, and how can we tackle the challenge?
In summary, I would say Ignorance and Carelessness are the major reasons why some accounts get hacked. Ignorance because, we fail to detect phishy attempts, and Carelessness because we just don't want to make any effort to protect our assets.
Users with crypto assets are targets of malicious actors, and the most common way to get the necessary information from genuine users is through Phishing. It's a form of social engineering and is one of the most common ways that cybercriminals gain access to user accounts.
Keeping your Steemit account secure is essential if you want to protect your data, funds, and online identity. Below are the following things I could tell and recommend to a person whose account has just been hacked.
Monitor activity: Regularly check your activity log for any suspicious behavior. If you spot any unfamiliar activity, change your password immediately and contact Steemit support.
Use a password manager to store the newly generated keys of your account, as it would be more dangerous if this new password is equally lost.
Work with secure browsers like Tor, Chrome, or Brave. I personally strongly recommend the Tor web browser, as it used multiple layers of encryption to hide your IP address and other personal information when visiting websites. This makes it much more difficult for hackers to track your activity and gain access to your account.
Avoid clicking on any other suspicious link until you get help or guidance from other users.
Immediate Steps You Should Take To Prevent Your Tokens From Being Stolen |
|---|
It's important to note that the power and access to our token relies on our private keys. With that said, one of the most important steps to take to prevent your tokens from being lost is to keep your private keys safe.
Private keys are long strings of alphanumeric characters that are used to access your wallet and control your tokens. If someone gets access to your private key, they can transfer your tokens to their own account.
it is important to make sure that you are keeping track of your account activity. Regularly review your transactions to make sure that nothing suspicious is going on. If you see any unfamiliar activity, quickly change your password and re-generate new keys for your account.
After regenerating and getting your new private keys, you should always store them in a secure place. It's best to keep them on a physical storage device such as a USB drive, or encrypted and stored offline.
- On my Steemit account, I navigate to the wallet section where I would see my " balance, keys, and communities."
- I select "Change Password," where I would be required to enter my current Master password.
- I then clicked on "Generate Password" to get my new password.
Conclusion |
|---|
Hacking is a real threat to anyone who uses the internet, and Steemit is no exception. With the rise of cryptocurrencies, hackers have been targeting Steemit accounts in order to gain access to funds.
This can be a devastating experience for anyone who has invested time and money into their Steemit account. Fortunately, as stated in this article, there are some simple steps that you can take to protect your account from hackers and prevent hacks on your Steemit account.
Kudos to the organizers of this contest, it's really a great initiative that would help better the Steemit platform.
Am inviting @enveng, @carlaisl, and @mvchacin to check out this contest.
Thank you, friend!
I'm @steem.history, who is steem witness.
Thank you for witnessvoting for me.
please click it!
(Go to https://steemit.com/~witnesses and type fbslo at the bottom of the page)
The weight is reduced because of the lack of Voting Power. If you vote for me as a witness, you can get my little vote.
Ciertamente amigo, el hackeo es una amenaza ante todas las plataformas posibles y steemit, no es la excepción. Imagino por el susto que pasaste y afortunadamente, pudiste frenar a tiempo el fraude, me alegra mucho tenerte entre nosotros con tu cuenta recuperada. Gracias por compartirnos tu experiencia y tus grandes recomendaciones; genial tu publicación! Saludos y merecidos éxitos en la misma!
Thanks for always being there for me dear friend, we should always guide our belongings, and never share Important stuffs with others. I really appreciate your time and support here friend ❤️:-)
I am so sorry about what happened to your account. Thank God you were able to recover your money back from the criminal. How can your close friend be so heartless.
Yes my dear friend, nobody is trustworthy, as humans have the tendency to change and become wicked and heartless. That's why it's always advisable to hide very confidential stuffs in secure places.
I really appreciate your time and support here friend, thanks for your valuable remark ❤️:-)
Your post has been supported by @josepha from team 2 of the Community Curation Program, at 40%. We invite you to continue sharing quality content on the platform, and continue to enjoy support, and also a likely spot in our weekly top 7.
Voting date:
Thanks for your lovely support and show of love dear @josepha, I really appreciate ❤️:-)
Nice write up friend. But how on earth could someone you introduced to the platform be the same person trying to steal your assets? This is indeed very disgraceful act. You did well by retrieving all your lost assets and that of your friends too. We just have to be cautious out here.
You could imagine brother, such is life. It was through this incident I realized the disadvantages associated with trust. I innocently gave him my phone while playing football, but his intentions towards me were evil.
I have learnt my lesson, and has continued to remain cautious of aseets.
Thanks for your lovely remark and support here my boss, I really appreciate ❤️:-)
That’s very sad though. It’s hard to trust people these days
Friend I congratulate you excellent participation, you have shared a very complete information on this subject, telling us your own experience, thanks for the invitation.
Thanks for your lovely remark and show of support dear @mvchacin, I really appreciate ❤️:-)
Hi my dear friend @preye2,
I hope you are fine and enjoying your life to full with friends and family.
Same like always you put your full efforts in creating the content by doing proper research and sharing knowledge you already have.
I feel sorry for your loss which your close friend did to you. It is really dishearting to see that our best friends are also not loyal with us if they see some money in our pocket. They wanted to do legpulling if we started making good earning source. I hope you had learned a lesson from this and will secure your account even more.
Dubious links are very harmful because we don't know where it will take us if we have no knowledge about link creation.
You have shared some recommendations including never share your keys, use VPN (which I don't know before), keeping our computer secure, and stay away from phishing links like dubious links.
Then you mentioned some of the reasons why account got hacked on Steemit. And I personally think that it is our own fault that we are careless and irresponsible even for our own accounts. We must take full responsibility and be active on the platform and must regularly check our wallet.
In last, you have given steps on what will you do if your account ever get hacked in the future. The recovery of account is very carefully taken step which you explained with screenshot and I appreciate it.
Generally, you have shared quality content with us for which I give you thanks and I wish you success in this and all future contests :)
Yeah boss, I learnt my lessons the hard way. We should not just trust anyone or stay careless with our keys and password.
Your comments and remarks on this article is very detailed and interesting. I really appreciate you sir❤️:-)
Stay Blessed always :)
When feeling of pity was wailing up in my mind about your loss, then I had some consolation when I read further and you recovered your lost Steem.
Trust needs to be renewed, knowing that a trusted person can get rogue with the passing of time. If someone help you create your account, then you should change your keys....
I was so interested in the use of a virtual private network to improve security as suggested by you. The VPN will be helpful in spoofing our address and location and keeping our browsing history secure. Thanks for sharing your story and for the idea to use a VPN. Security is our responsibility.
Wishing you the very best in your endeavour....
Thanks for your lovely support and words of guidance, U really appreciate my boss❤️:-)
Hola @preye2
Phishing es la manera en al que por lo general suelen atacar aquí en Steemit, es por medio de enlaces que te conducen a páginas donde se supone ganarás dinero muy fácil o gratis, y el principal señuelo que utilizan par que los menos educados en seguridad caigan.
Lamentablemente. Buen post, muy buena información.
Thanks for your lovely remark and show of support dear friend, I really appreciate your guidance and instructions ❤️:-)