10-02-2022, 11:09 AM
50k gone due to malware attack. What should I do?
<!-- SC_OFF --><div class="md"><p>I know I can't get the money back. I know transactions are irreversible and that no one other than the thief can give me my money back.</p> <p>My question is about what actions are advisable to take when something like this happens?</p> <p>I'm asking in the sense of legal procedures, taxes, security, and also perhaps for mental health? (I am based in the Netherlands, btw). Maybe a way to report their site, their twitter accounts, or anything you could think of?</p> <p>I have been in crypto since 2017, investing regularly and avoided being scammed so many times. But this one was well-thought social engineering that targeted me specifically. And they made a great job at it. I wish they could use such talent for something good.</p> <p>I am looking at ways to strengthen my digital security, and continue investing and building in the space. But before I completely move on from this, I want to know if anyone has good advice on what to do next.</p> <p>Thank you.</p> <p>EDIT: For all the people asking, here is what I know.</p> <p>I'm still not 100% sure how I got the malware. But it seems obvious now: I am a game/metaverse artist. They reached out to me to work on their game. We had some conversations. They asked me to visit their site, login and download their game. I have done this with lots of clients.</p> <p>Avast and virustotal says “file is ok” but then it says “potential malware detected” when running it. I block it and delete it.</p> <p>Next day i get people trying to access my email. I remove metamask. Change all passwords.</p> <p>3rd day I get someone accessing my 3commas account. They accessed all my emails again, i change all paswords again.</p> <p>4th day, emails accessed, they signed out my phone so I woulednt see the notifications from opensea while they sold all my nfts. all my funds on metamask are gone.</p> <p>The -supposed- scammer was actively chatting with me about his game and our job until the moment of the theft.</p> <p>I'm not sure how they did it. I'm quite a bit shaken. Haven't fully realized what all this means. I'll continue checking comments when I have my thoughts in order. Thanks mostly to the people replying to my original question.</p> </div><!-- SC_ON --> submitted by <a href="https://www.reddit.com/user/lukazo"> /u/lukazo </a> <br/> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/xtkvpw/50k_gone_due_to_malware_attack_what_should_i_do/">[link]</a></span> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/xtkvpw/50k_gone_due_to_malware_attack_what_should_i_do/">[comments]</a></span>
<!-- SC_OFF --><div class="md"><p>I know I can't get the money back. I know transactions are irreversible and that no one other than the thief can give me my money back.</p> <p>My question is about what actions are advisable to take when something like this happens?</p> <p>I'm asking in the sense of legal procedures, taxes, security, and also perhaps for mental health? (I am based in the Netherlands, btw). Maybe a way to report their site, their twitter accounts, or anything you could think of?</p> <p>I have been in crypto since 2017, investing regularly and avoided being scammed so many times. But this one was well-thought social engineering that targeted me specifically. And they made a great job at it. I wish they could use such talent for something good.</p> <p>I am looking at ways to strengthen my digital security, and continue investing and building in the space. But before I completely move on from this, I want to know if anyone has good advice on what to do next.</p> <p>Thank you.</p> <p>EDIT: For all the people asking, here is what I know.</p> <p>I'm still not 100% sure how I got the malware. But it seems obvious now: I am a game/metaverse artist. They reached out to me to work on their game. We had some conversations. They asked me to visit their site, login and download their game. I have done this with lots of clients.</p> <p>Avast and virustotal says “file is ok” but then it says “potential malware detected” when running it. I block it and delete it.</p> <p>Next day i get people trying to access my email. I remove metamask. Change all passwords.</p> <p>3rd day I get someone accessing my 3commas account. They accessed all my emails again, i change all paswords again.</p> <p>4th day, emails accessed, they signed out my phone so I woulednt see the notifications from opensea while they sold all my nfts. all my funds on metamask are gone.</p> <p>The -supposed- scammer was actively chatting with me about his game and our job until the moment of the theft.</p> <p>I'm not sure how they did it. I'm quite a bit shaken. Haven't fully realized what all this means. I'll continue checking comments when I have my thoughts in order. Thanks mostly to the people replying to my original question.</p> </div><!-- SC_ON --> submitted by <a href="https://www.reddit.com/user/lukazo"> /u/lukazo </a> <br/> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/xtkvpw/50k_gone_due_to_malware_attack_what_should_i_do/">[link]</a></span> <span><a href="https://www.reddit.com/r/CryptoCurrency/comments/xtkvpw/50k_gone_due_to_malware_attack_what_should_i_do/">[comments]</a></span>