Quote:
Originally Posted by winbig
I would scan for spyware/malware/trojans ASAP.
If you find anything, KEEP THE LOGS, and even take screenshots, if possible. That way you can prove to Neteller and your Bank that your computer was definitely not under your control when those deposits were made/attempted.
Afterwards, I would even suggest backing up everything you need, formatting and reinstalling everything just to make sure.
*Disclaimer* Only do it if you're comfortable with doing so 
...why everyone doesn't have a firewall installed is beyond me.... |
I would get a live Linux CD like
http://www.inside-security.de/insert_en.html or
http://www.knopper.net/knoppix/index-en.html, boot the computer into Linux and save all the data. After such a major security breach the computer will have to be reformatted and everything reinstalled from scratch, but at the moment I would leave it in case there is some evidence on the computer that might be useful, for example, a trojan horse. In the meanwhile, I would use another computer if possible, or boot off a Linux CD.
Quote:
Originally Posted by indicka
This occured less than 18 hours ago. I was able to close my bank account before money was taken out of my account..(instacash is not really immediately like they say)
Yes, these transactions are totoally out of norm. I've made hundreds of InstaCash deposits...and never have I made any deposits over $75...not once...and my deposits have always been whole dollars. These unauthorized transactions were all USD with change, but when transfered to another merchant, they all turn out to be whole numbers in Euros..hmm?
I'm surprised Neteller even allowed for them to attempt 5 unsuccessful credit card deposits, one minute after another.
|
Indeed, at other times perfectly innocent transactions set off the alarms, my account got locked for
receiving about $800 from a casino.
Quote:
Originally Posted by vinylweatherman
It will be in the other merchant's NETELLER account, and it isn't that easy to get money out of Neteller as fast as it can be put in. If Neteller were alerted early, which seems the case, they should have locked ALL accounts in this chain, including the merchant. The fact that a merchant is involved says nothing for the vetting procedures employed by Neteller when deciding if a company is really a proper business or a scam. The FBI will have a field day when they hear about the speed with which the thieves were able to remove the money from the entire system, and for a very substantial amount that could fund some serious criminal activity.
If Neteller say this was done from the user's computer, two questions? 1) was it actually switched on at the time this took place? 2) Was it connected to the internet during this time. If both these are true, this points to a trojan application executing commands from a remote computer through a port. There are some defined ports through which Windows will accept input as though coming from the user's keyboard. A trojan module has to be in place to open the port and feed the comands through, while at the same time ensuring nothing looks out of place to anyone using the PC. They could have got the initial account data from Phishing, including the MAC of the PC as well as the IP address, or they could have inserted a keylogger or screen logger through a malware application. Download any GFED casinos recently?  |
It certainly looks like a remote access trojan or an insecure wireless router.
Quote:
Originally Posted by vinylweatherman
A complete reinstallation is a good move, however inconvenient, and do not allow the PC near the internet till this has been done in case further information is compromised.
I would really like to see more openness from Neteller in telling us how these thieves got away with this, enough at least for us to know the vulnerabilities that we ourselves may have left open for them, and how we should close them.
|
It should be traceable which casino the money went to. After that it depends on the casino's co-operation.
Quote:
Originally Posted by amatrine
I had this happen from a keylogger from my neteller. Neteller held me repsonsiable for the funds. To this day I get collection calls, and refuse to pay for it, though I know they got more money from me than what was stollen in affilate payments that to this day get deposited into neteller I cant claim.( despite numerous attempts at contacting thiese affilates and telling them I cant accept neteller, another matter) They also said it was from my computer. It wasnt.
I did find a virus when I scanned the computer and removed it, and closed and changed all my accounts, ( ebay, paypal, bank cards)
Was a pain, but now I scan this thing every day. Lesson learned.
I also have a young daughter who plays games on this computer and when she does I pick up all kinds of spywayre etc, so probably how it got here in the first place.
Ama
|
Install Spybot Search & Destroy with resident Teatimer. It will stop a lot of spyware and other junk from installing or running on your computer. You should also create an account with restricted rights for your daughter, if you have not done so already, so that she can do less damage. Or use Linux.