Someone cleaned up my IB account (almost)

alanm,

yes, i basically agree with you, except with this:

Originally posted by alanm
By transferring the statements via TWS, you're left with packet-sniffing as the main exploit. IMHO, that's about as good as you're going to get as long as you're using public networks.
More...
...because encryption, if implemented properly, will render packet sniffing useless, too.

put it another way: i think it would be more secure to email a link to the (https-protected) report on their site, than to download the report, unencrypted, over TWS.

- jaan
 
Originally posted by easyrider
I instdalled Zone Alarm yesterday, the pro version. I have already received several notices that someone was trying to get in. I would think it was just cookies or something but I was not even using the browser last time it happened. Scary stuff.
More...

Those attempts to "get in" were packets hiting your computer, mostly probably they were pings, probes from local email and news servers, ftp attempts, etc. Just because a packet is hitting your computer doesn't mean by any stretch of the imagination that someone is hacking you. There are many companys, people, programs, etc, that do ping sweeps, and other types of port sweeps for completely innocuous reasons, it also isn't illegal to probe a persons computer. You should probably just turn the confirmation off completely. Why? Because it someone is good they will use malformed packets to hack or ping you and ZA won't even spot them, most likely.

Originally posted by ddefina
When I first installed Zone Alarm a couple years ago, I noticed a program from Microsoft trying to contact an outside server called "Distributed Com Services," on all my computers running win98 or older. Has anyone else seen this and know what it does? I notice its still blocked in my applications section in zone alarm.
More...

I think that is a local system service, I wouldn't worry about it.

Originally posted by jaan
fyi: that would not be a lot more secure than the email statments, because - to the best of my knowledge - the TWS communications are not encrypted.
- jaan
More...

I'd be suprised if TWS doesn't create an encypted tunnel, it is so easy to do, why would they not do it.

My guess to what happened it that Miska had a trojan, that was sniffing passwords. In such a situation, there really isn't anything at all that IB could have done. It is almost completely, in such cases, the fault of the person infected. Mishka, if you are reading this I advise you to format your disk drives, reinstall windows, install a anti-virus package, install zone alarm, and change all your passwords AFTER you have reinstalled your OS and scanned it.

Good luck!
 
Today I received the proof that my attacker frequent this site, reading this thread. Feels strange to know.
"..What you said can be used against you in a court of ...."
Beware.
 
Originally posted by Mishka
Today I received the proof that my attacker frequent this site, reading this thread. Feels strange to know.
"..What you said can be used against you in a court of ...."
Beware.
More...

Mishka,

Would you care to elaborate? I for one would like to know if you determined the nature of how you were compromised. Others could benefit from this information as well. Did you have a trojan? Did someone have physical access to your computer. Did you tell your password to your ex- girlfriend? What's the deal?

Mike
 
Originally posted by Mishka
I belive my "friend" might explain much better how it was done . Yes, he/she is here.
More...

I'm assuming that this person was not a friend of yours by the "he/she" statement. Come on, give us the story.

Mike
 
Full story is spread over the pages of this thread. How I was compromised I can only guess, still working on it. Ask my "friend" for true confession.
Hope IB really solved the problem.
 
You must log in or register to reply here.
Back
Top