jambutty

Someone has hacked the 18DailyPro site and altered the site code so that when you click on the E-Gold button you get taken to a payment page for account #2882365 (18dailypro.biz) In actual fact that is the account number for Surf&Earn

All my upgrades and payments have been made to and come from E-Gold account #2818583.

How was this done?
First open an E-Gold account using the name of 18DailyPro.

Then hack into 18DailyPro and change http://2818583.e-gold.com/ to the new account number. That’s all there is to it apart from gathering the funds.

I would just add that I do not know how to hack into a site but I do know enough html to be able to direct a payment to my account from a link in a web page. We all have our own Personal Payment Link, which is http://xxxxxxx.e-gold.com/ where xxxxxxx is your E-Gold account number.

It has been done once and you can bet your sweet life that there will be others.

Before upgrading anywhere that uses E-Gold look in your E-Gold account history and make a note of the account number where you last made a payment to and received a payment from a particular site. When you make your upgrade make sure that the account number being displayed is the same as what you already know. If it is different and even if alongside it states the name of the site, do not believe it.

This latest hack is going to cause major problems and people will lose money if they are not very, very careful.

sartaj

jambutty

Sorry to read about your loss.

If you complain to E-Gold they will ALWAYS blame your computer security as the reason why someone got into your account. They will not even entertain the POSSIBILITY that someone has somehow managed to disable the Sentinel settings on some accounts.

However most E-Gold losses will be down to lack of computer security on an individuals computer but there are exceptions.

With the best software defences available a computer is still vulnerable to the ‘new’ nasty.

In your case sartaj because the thief altered your email address it looks like you have some sort of keylogger on your computer that relayed your E-Gold logging in details to head office. But that wouldn’t be enough if your Sentinel settings were set at least at the default level. The thief would also need access to your email account to read the PIN email but with a keylogger that would be easy enough.

You really need to make sure that your computer is secure and has nothing nasty lurking on it and remains infection free from all known nasties. If you still have a keylogger on your machine no amount of logging in details will protect you in the future. Once you are sure of your own machine then go back into E-Gold and check that your Sentinel settings are at least at default, preferably higher and then change your email address and password. Do use a password that is made up of at least 12 random upper and lower case letters and numbers and not a real word. Also only ever use the same password ONCE.

You also need to change the logging in details of your email account and again using a password that is not a real word.

Phoeneex

Hullo Jammy

I'll leave that butty bit out...the jammys sound juicy.....

I am new and realised in having to submit my Egold # was rather strange but that may be handy with this site. However, would it not be prudent and safer to "cloak" that from others viewing it with something else? Besides, it is an individual's right to disclose to whoever needs it if and when required?

Perhaps a little thought there will reflect the Admin being fully responsible in taking steps to curb any form of unnecessary exposure when it is best avoided from the very start. Just my thoughts here... I was awed at that when filling the details.

P.

jambutty

The requirement to input your E-Gold account number when joining the forum is a throwback from the early days when members got paid for their posts.

It is not required now so you can go to your profile and delete it if you want to.

gisfrancisco

You should consider Mozilla Firefox for your browser and use Roboform as you password keeper.You use very little keystokes if someone has breach your security.

Gideon2000

dont use password to egold as to your email.
and always change your egold password every at least 3 days.

jhizzy

How come nobody has considered using a Mac for investment purposes. I had problems with Windows spyware in the past, so I switched to a very reliable Mac. Just my 2 cents.

xqwats

just my 2 cents... ALWAYS look for the padlock sign (meaning SSL connection active) when accessing e-gold account. i've found one fake e-gold account tried to stole my password. luckily i noticed it has no ssl connection.