I've been hacked! Help.

Discussion in 'Community Discussion' started by Fireslayer, Sep 21, 2011.

  1. Fireslayer macrumors newbie

    Joined:
    Nov 29, 2009
    #1
    Hi all.

    Well I guess I'm a bonehead for not taking the proper steps to secure my mac. I'm a trusting soul and didn't think that it could happen to me.
    Turns out that my fire wall was not even turned on. Now, I need to know what steps to take to protect myself. I'm not opposed to sitting down with an expert and paying for serious assistance. In the mean time, I'll look for help here.

    1) My fire wall now says "Only essential services". Does that mean that it is ON now?

    2) I know who did it,,, but how? Did he sit in front of my house and gain access the first time that way? I mean, HOW in the world can he be at his house and say "I want to get so and so, and then do it"?

    3) I know that my system puts off a 'number'. I believe that it is the ISP. What gives off the number, the router or my computer?

    4) By changing my router (and moving to another state) would that keep my dear friend from being able to pick my out of a crowd and targeting my specific machine?

    5) What steps do I need to lock him out?

    6) What can I turn off at night (when he is up to no good) to prevent him from gaining access? Computer,,, Router,,, or the cable connection?

    7)NOW the big question. How do I prove to a judge that he was in my computer. Does a hacker leave a trail? This is a federal offence and he is attempting to commit extortion. This is kind of a big deal and I want to press charges.

    I'm at the point where I don't even know where to turn. I know that there are people in law enforcement that track down and prosecute these types of crimes, but I'm guessing that I'm not a big deal to them and he will go unpunished.

    I could really use some help.

    Thanks in advance!
     
  2. miles01110 macrumors Core

    miles01110

    Joined:
    Jul 24, 2006
    Location:
    The Ivory Tower (I'm not coming down)
    #2
    It is quite obvious you do not know what you are talking about. For starters, you have presented no evidence that indicates someone has "hacked" you. If someone got into your machine you probably left it logged in without a password on it. If you did have a password, it was probably not a good one.

    If someone got into an e-mail account they don't need access to your computer at all; they probably knew your username and guessed your password and/or answered your security questions (which they either knew or looked up) to get access.

    What you're probably referring to is your Internet Protocol (IP) address. This is assigned to you by your ISP. You might have a router that separates your public (ISP-assigned) IP from your private IP address in your local area network, but this is not relevant.

    Probably not.

    Depends on if they actually got in.

    Don't connect to the internet and you'll be very safe if the intruder doesn't have physical access.

    Then talk to the police, not an anonymous internet forum.
     
  3. Fireslayer thread starter macrumors newbie

    Joined:
    Nov 29, 2009
    #3
     
  4. miles01110 macrumors Core

    miles01110

    Joined:
    Jul 24, 2006
    Location:
    The Ivory Tower (I'm not coming down)
    #4
    You should not.

    I didn't ask you to post details. However, it is highly doubtful you got hacked other than having weak passwords or weak physical security that would otherwise prevent direct, physical access to your machine.
    Yes, it is possible, but like I said - unlikely.
    Sorry, but I don't really believe you. Local data is a rarity these days.
    Incorrect. If you feel you are the victim of a crime, you need to talk to law enforcement.
    I'm equally, if not more sorry that you think an internet forum is the first place to go when you are the victim of a crime.
    How will they be able to offer more assistance than the police?
    Incorrect. The police or your lawyer is the correct way to go about pursuing legal action against someone.
     
  5. yg17 macrumors G5

    yg17

    Joined:
    Aug 1, 2004
    Location:
    St. Louis, MO
    #5
    IF, and that's a big if, you were really hacked, and you want our help in making sure it never happens again, knowing what makes you think you did get hacked and how he get in is sort of an important detail.

    Hollywood has given people a false impression of what hacking is. It's not Halle Berry and John Travolta cracking CIA encryption in 10 seconds or anything that sophisticated (god what an awful movie, at least Halle Berry's tits made it worth it, somewhat), or Jeff Goldblum uploading a virus to an alien mothership orbiting the earth. If you were really "hacked" it was probably because you chose an easy to guess password for one of your online accounts.
     
  6. cantthinkofone macrumors 65816

    cantthinkofone

    Joined:
    Jul 25, 2004
    Location:
    Missouri, USA
    #6
    These two have given you good points. Hacking a person's computer or network is not a few seconds of work. It could take weeks or months to collect enough data to gain access.

    If you feel that you have been hacked contact local law enforcement. Don't get on a forum and ask for help.
     
  7. miles01110 macrumors Core

    miles01110

    Joined:
    Jul 24, 2006
    Location:
    The Ivory Tower (I'm not coming down)
    #7
    In addition, this question is particularly vexing. If you are in the United States and are not a data forensics professional (a fair assumption, in my opinion) the absolute worst thing you can do is go bumbling around your data looking for clues. This could be considered tampering with evidence, subsequently calling its validity into question or disallowing it from being used against your "hacker" in court.

    Again, if you are serious about pressing charges against someone, you need to stop doing everything on the computer you believe to be compromised and consult with law enforcement and/or legal representation. I don't particularly care if you were hacked or not; but the way you are going about "solving" your problem is not going to get you anywhere (except possible hacked or extorted again).
     
  8. Fireslayer thread starter macrumors newbie

    Joined:
    Nov 29, 2009
    #8
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    I have spoken to my lawyer, and the police. This is the inception of the case and I have not been able to speak to a forensic officer yet.

    I will NOT give details of the information on a forum. If you don't believe me, that is fine. I'm not asking you to believe me, I'm asking for help to protect myself from future attacks. That is all. Just help me secure my system.

    I have bounced what I know off of close friends and they were shocked. It was pretty obvious that I was hacked.
     
  9. miles01110 macrumors Core

    miles01110

    Joined:
    Jul 24, 2006
    Location:
    The Ivory Tower (I'm not coming down)
    #9
    Turn it off and disconnect the network cable. That's the extent we can help you based on the little useful information you've given.
     
  10. Fireslayer thread starter macrumors newbie

    Joined:
    Nov 29, 2009
    #10
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Thank you. That is the kind of answer that I am looking for.

    I have not been poking around because of what you said. I have not removed the item in question for fear of screwing up a good case. Like I said, this is early and I need to know where to go.
    I have moved and I don't even know what state this happened in. It is a federal offence because it is hacking, but I'm small potatoes and the FBI will probably turn their backs on me. There is some serious money involved, but I don't know what they consider "enough".
     
  11. cantthinkofone macrumors 65816

    cantthinkofone

    Joined:
    Jul 25, 2004
    Location:
    Missouri, USA
    #11
    Well good luck. Hope things work out for you.
     
  12. paolo- macrumors 6502a

    Joined:
    Aug 24, 2008
    #12
    First of all, are you sure it's your computer that's been hacked, your connection or a web service that you use. If any of these are compromised, the hacker has access to some of your stuff. But I think hackers are less and less able to gain full control of your computer just by you being on the Internet. Mind you, getting access to your WiFi connection can be fairly easy and once in, the hacker can see the traffic going and if you're not on a secure connection with a website (https:\\) then he can basically see everything you're doing online and just grab the data. As for web services there are many way the hacker might get access to your stuff, getting the passwords is easy if you have physical access to the computer or as I was telling you if he got into the WiFi network or various other schemes.

    Bottom line, I understand that you don't want to give out specifics but I think you're better off asking a professional who'll go into all the gritty details with you. For now, since we have no clue where you are compromised, you're better off staying offline. Even if you're using another computer on a completely different connection it doesn't matter if he's into something you're doing on a web service.
     
  13. iBreatheApple macrumors 68020

    iBreatheApple

    Joined:
    Sep 3, 2011
    Location:
    Florida
    #13
    I don't understand why when someone who clearly doesn't know what they are talking about and needs help, everyone has to be completely rude and asinine.
     
  14. munkery, Sep 23, 2011
    Last edited: Sep 23, 2011

    munkery macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #14
    Starting with Mac OS X Leopard, the TrustedBSD MAC framework has been included to provide a firewall by default.

    A firewall was turned on despite the firewall found in the System Preferences not being turned on.

    So, the attacker would be unable to get remote access to your system unless you had a sharing service turned on and exposed without a secure password.

    The only other possibility is that you have not been doing regular system updates such that known vulnerabilities were present on your system, but this is unlikely to be the cause unless the attacker has the skill set to exploit those vulnerabilities present in whatever unpatched version of OS X that you are using.

    This is overly restrictive. Allow selected services through the firewall as well or you may encounter issues.

    What lead you to believe that he accessed your system?

    It is possible that he only gained access to your wireless network and then was able to sniff your traffic on the network without actually having accessed your computer.

    Your external IP address is usually given off by the router.

    What is happening?

    I suspect that you have a weak wireless security configuration. Stronger wireless security will most likely fix your issue.

    Depends on the issue.

    What specifically is happening? Have emails been tampered? What kind of data has been accessed?

    I do not need to know the content of the files but only the file types (docs, pics, emails, etc).

    Whether or not this data has been sent over the network is also important. Any data that is sent unencrypted can be collected by the attacker if he had access to your network despite not having access to your computer.

    This depends on exactly what the attacker was doing.

    If he isn't aware that you are onto to him, then you can set up monitoring software to detect him while he accesses your network and/or system.

    In the meantime, read the "Mac Security Suggestions" link in my sig.
     
  15. munkery macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #15
    I forgot to mention that one of the most used techniques by these types of criminals is trespassing on the target's property to get physical access to the computer to collect information.
     
  16. mrsir2009 macrumors 604

    mrsir2009

    Joined:
    Sep 17, 2009
    Location:
    Melbourne, Australia
    #16
    What is it that you think got hacked? An email account? An online banking account? You say that its obvious you got hacked, but what exactly do you think that hacker has been into?
     
  17. (marc) macrumors 6502a

    (marc)

    Joined:
    Sep 15, 2010
    Location:
    the woods
    #17
    This. Your computer doesn't get hacked unless you're a very important person, which the OP is clearly not.
     
  18. rdowns macrumors Penryn

    rdowns

    Joined:
    Jul 11, 2003
  19. chrfr macrumors 603

    Joined:
    Jul 11, 2009
    #19
    This is because the OP has come here and asked a question that demands additional information to be answered, yet has provided none.
     

Share This Page