Who's been hacked?

[Grzpdlr]

Got a strange call from one of the places I have investments. The lady, who I know, called and ask if I would send her a copy of my driver’s license. She said they were about to wire the funds to the lady in Michigan but the signature on the request didn't look like my signature. I said I hadn't requested any funds to which she said it was for the lady that had just lost her husband and she and I had been emailing back and forth about it for several days. I said I had received no emails from her in the last couple of weeks. She then sent me a test email which I did not receive. She then sent me another email from her private account on another server and it did come through. This is a large investment firm. My question is, who has been hacked, me or them or both? Also, yesterday, we got word of fraudulent charges on my wife's American Express. Coincidence?

[pj67coll]

Quote:

Originally Posted by Grzpdlr

Got a strange call from one of the places I have investments. The lady, who I know, called and ask if I would send her a copy of my driver’s license. She said they were about to wire the funds to the lady in Michigan but the signature on the request didn't look like my signature. I said I hadn't requested any funds to which she said it was for the lady that had just lost her husband and she and I had been emailing back and forth about it for several days. I said I had received no emails from her in the last couple of weeks. She then sent me a test email which I did not receive. She then sent me another email from her private account on another server and it did come through. This is a large investment firm. My question is, who has been hacked, me or them or both? Also, yesterday, we got word of fraudulent charges on my wife's American Express. Coincidence?

My guess is they were hacked. Also the Amex problem is not likely co-incidence. People have no idea how unsecure their electronic presence is these days. I just had to go thru the rigamarole of cancelling my Ameex card, getting a new one, wiping my PC and completly rebuilding it, and changing all my passwords because someone got a hold of my Amex card info and charged over a thousand dollars to it. I'm hoping to reach a point where I'm no longer using CC's for anything.

- Peter.

[catmandoo62]

about 3 months ago i had 2 charges on my discover.one for 30 bucks and one for 70.i called discover about it and they told me the place and time they were made.i was 50 miles from that town at those times.they credited my account back the 70 bucks.

[Dubyagee]

I will not use a debit at any gas pump. Those thieves have hit me twice by scanning my card at pumps. I use credit and put in my zip code. My bank has always fixed it but its a hassle. Had to set it up to send all transactions sent to my phone live just to keep an eye on it.

My security cameras were hacked. The only way I caught it was a lot of modem traffic at night. Went in and pulled up a log. A lot of data was being sent to china. Blocked the ip range and it stopped. Still need to check the DVR and see if its been set up there to do it.

[Mxfrank]

I'm sorry this happened to you, but the compromise of a brokerage account is one of the most serious problems you can encounter. These are strange times, and these new frauds may or may not be covered by SIPC. You don't want to be the test case. The brokerage house has essentially all the information in your life, and you have no way of knowing how much was leaked. I've worked in this industry, so I'm going to tell you what I would do, and it won't be pretty.

First thing you want to do, today, before the market closes for the long holiday is secure your brokerage account. The immediate step is to contact their compliance department. Don't talk to a broker, supervisor or branch manager, you want to talk to compliance. In the conversation, it's important for you to insist that their email server or her desktop had to have been hacked. Don't let them convince you otherwise. You want them to place heightened security on your account. The best stopgap is for there to be a comment on the account with a secret password which is only exchanged by voice between you and them. They may have other tricks, anything they can do to make it hard to access your account is good.

(NOT optional) Next, you want to go to any of the big online brokerages and open a new account. When you do that, you should also file ACAT forms to transfer your account. This can all be done electronically: You have to do this because the hacker may be able to do it just as easily as you can. You have to get out of the way of trouble. You may think you love your broker, that she's done special work for you. She may even be a friend or relative. None of that matters. Someone knows the back way into your brokerage account, and you will be broke if you let your heart block the exit. If you file an ACAT online today, the process will be done by this time next week, and whatever is going on at the old broker will be behind you. remember, it's their mess but it's your money. You were one signature away from the poor house. There's no upside to loyalty.


(optional) Once you're off the phone with the brokerage, file a complaint with Nasdaq. That's a very nasty thing to do, as it will go on the public record of both the broker and the firm. They will have to appear at an arbitration proceeding and defend their security procedures. It's a big commitment for you, as you will have to appear. But someone is going to be burned and this will put the problem in the spotlight.

Next, file two police reports immediately, one for the brokerage account and one for the Amex. The police are unlikely to do anything, but the report may be important later, in case of an investigation. If you don't file the reports, you will look less innocent should the question come up later.

As for American Express, they should cancel the charge and send new cards, with new numbers for BOTH you and your wife. Don't forget to change any autopay arrangements you had with the old number.

Next, run a deep virus scan of your computer. In addition to whichever standard AV package you use, download Malwarebytes and run that. I like to download a free trial of an extra virus checker and use it just for an extra deep scan. If AVAST has a free trial, that's always a good one to use.

Next, CHANGE THE PASSWORD ON YOUR E-MAIL account. I don't think your e-mail was compromised, but don't assume anything. Use a long password, upper and lower case, numbers and special characters. It's the most important password in your life, and you don't want it to be easily guessed.

Here's where it gets time consuming. You need to go through your entire list of online ID's: Banks, credit cards, brokerage, Social Security, CreditKarma, Quickenloans, the cable company, telephone, whatever. Make a list of these first. Then change your passwords,and keep them complex. Try to do them all at once. If a site allows two factor authentication, turn it on. Finally, if the site allows you to change your userid, change that. This last bit is often overlooked, but if a criminal has your ID and password and you just change the password, you've only covered half the problem.

Next, go to your bank(s) and explain what happened. Ask that your accounts be flagged for high risk authentication.

Finally, call the three credit bureaus and freeze your credit file. This will make it impossible for anyone, including you, to apply for credit without a password, which you will lock securely in your safe deposit box.

All of this is inconvenient and difficult. The alternative is that someone out there may have enough information to clean you out.

[Mxfrank]

I should also point out that in a brokerage firm, all customer correspondence is monitored by supervision and compliance. So just to make you a little more nervous, there were several eyes on these communications before you were called.

[Mike Murrell]

On a less serious, but bothersome note....

My youtubetv account was hacked 2 mornings ago. Yep...your big screen TV has an ip addr.

Turned on the TV Wed. morning to see a msg instructing me to go to:

youtube.com/activate; then login and provide 8 character upper case "code" displayed on the tv screen. Each time I entered, be it from android or laptop, I received an "incorrect" entry msg.

I then googled something like "youtubetv support" to get help. Selected a choice returned. Things appeared normal. Went into a chat session as you do on tv.youtube.com. Someone named Gabriel told me he would assist with my problem, but would require a "one-time" $39.99 charge to upgrade "firmware". I knew this was non-sense, ended the chat which I recorded and then contacted youtubetv. My bad for not also grabbing the URL.

YT TV support confirmed it was a hoax. No $$$ was lost, but it just goes to show that anything with an ip addr is vulnerable.

On a side note, I'd like to mention something you may not be aware of unless you have each and every purchase reported immediately to your cell phone or you scrutinize your purchases frequently by going online to your bank.

Some gas retailers have flawed pump software that does not clear out your transaction after you have finished filling up with gas. It appears to have completed and you receive a receipt, but the session you established with your CC remains alive. You drive away and the next person to use the pump rides on your nickel. Their purchase goes on your card. The person who made the purchase has no idea what has happened.

An acquaintance who manages the electronic fraud dept. in a local bank told me that many people do not monitor their CC purchases, by either frequent online review or instant reporting back to their cell. As a result, some are receiving bills at the end of the month with gas purchases they did not make, charged to their account.