Done for paypal fraud

barneysplash

Hi all

I thought I had it all covered for home pc security:

I use Firefox, not Internet Explorer.

I don't use wireless networking, I use a network cable to connect to my router.

Wireless it also turned off at the router, also use a DMZ as a security feature.

I use AVG antivirus and spybot.

I've used PayPay for 4 years now without a hitch UNTIL

I checked my mail yesterday and there were 2 unauthorized transactions.

Anyway, a long story short - PayPal refunded me the $400 I was scammed for within a few hours,
and the bank is investigating the credit card end of the fraud.

I thought I was pretty good when it comes to pc security, just goes to show you can never be too careful.

EDIT: Moderator, can you move this to the security thread. Only found it after posting. Thanks!!!

rmacm

Moved from Nets & Comms at OPs request.

barneysplash

So anyone got ant tips on maintaining home pc network security?

I've had a look at the stickys in this forum, not much there in the way of
guidelines, but then again security is such a contentious issue, the moderators
have bigger things to worry about.

Still some general tips would be nice

Might help to attract some newbie traffic like myself to the forum

mickoneill30

I'd be pretty sure it wasn't your fault if Paypal refunded you. They're hard enough to get refunds from, they're not going to do it if you got hacked. That would be 100% your problem.

barneysplash

Mr.S wrote: »

how did they get your password? did you fall for one of the fake paypal emails? or was it just hacked at random?

I hadn't used paypal in about 3 weeks.

They still got through ???

The scam site was this E gold cash maker thing. I don't know how they got me, I never go to
any of those sites or links in spam mails.

I put this here for reference only, don't go googling or checking it, you might get stung by something.

That and an e-mail address out of Japan was behind it.

Will be very interested to see what the bank fraud report says.

BigEejit

You may be using firefox but have you got the noscript and ad blocker plus addons installed? You might have been hit with some kind of drive by trojan

barneysplash

Can you post a link to these addons?

Thomas_S_Hunterson

barneysplash wrote: »

also use a DMZ as a security feature.

:eek:

I think wires may have been crossed somewhere.

DMZ opens your computer up to the internet, removing the protection of an NAT router, effectively forwarding all ports.

mick.fr

Your Paypal account/password was probably stored in your FF cache.
It is not recommended to store such important password in a browser cache.
A malware probably managed to read your cache.

That is the reason why most of the online banking portals for companies are using random keys and pins to login.
The weakest element in security is the individual because he is lazy by nature :-)

mick.fr

Sean_K wrote: »

:eek:

I think wires may have been crossed somewhere.

DMZ opens your computer up to the internet, removing the protection of an NAT router, effectively forwarding all ports.

I mean no offense mate, I believe there is some confusion here and that it might help to understand :-)
http://en.wikipedia.org/wiki/DMZ_host

A DMZ does not forward all ports, and is most definitely more effective that just NAT without a DMZ.

jhegarty

barneysplash wrote: »

I checked my mail yesterday and there were 2 unauthorized transactions.

Any chance those e-mails where not from ebay/paypal ?

Thomas_S_Hunterson

mick.fr wrote: »

I mean no offense mate, I believe there is some confusion here and that it might help to understand :-)
http://en.wikipedia.org/wiki/DMZ_host

A DMZ does not forward all ports, and is most definitely more effective that just NAT without a DMZ.

Get ya now. I assumed that the OP meant that he had added his home PC to the DMZ ala the home router functions.