Hey folks,

I recently got a suspicious application via e-mail with a PDF inside. (Weird sender domain, giving other mail I should respond to, unrelated initiative application to our business, big PDF)

The PDF just holds one page but is 2.5MB in size. I opened it in a VM on a sandbox PC, nothing suspicious. VirusTotal also says the file and senders URL is clean.

Is there another way to check if it includes any malicious code? Checking the Raw file or with a Hex Editor? Should I look for something specific? I want to detect the damage it may have caused.

Thanks a lot

Hi there,

I was hacked through my personal email today. I was sent about 9 of those draft emails where they flag it and you can’t miss it. I was a little shocked as I have the Microsoft Authenticator app which is what I thought was 2FA? Anyway I noticed my emails were being forwarded. I searched the ‘inbox rule’ which I have deleted 5 times. But this rule keeps reappearing! And my received emails are continuously being forwarded to that email. I did a diagnostic test and I guess this rule lives on my email server which is why it keeps reappearing?

The rule

idtienphuocl (name of rule) If a message arrives in my inbox, forward the message to 'melindap 195463@hotmail.com' and stop processing more rules on this message.

Diagnostic coding (these are some snippets I’ve taken from when I requested diagnostics for the inbox rule)

ContentFlags="SubString, IgnoreCase / 00010001" PropTag="SenderEmailAddress / 000000000C1F001F" Id="SenderEmailAddress / 000000000C1F001F" DataType="String / 001F"> < Value>@idtienphuoc.store</Value>

</Rule> ‹Rule Index="1" Name="idtienphuoc1" Id="16620349402048888833" Provider="RuleOrganizer" ExecutionSequence="10" Level="0" IsExtended="False" StateFlags="ExitAfterExecution" UserFlags="0"> ‹ProviderData><! [CDATA[

Id="DisplayName / 000000003001001F" DataType="String / 001F"> «Value>melindap195463@hotmail. com</Value> </Property> ‹Property Id="DisplayType / 0000000039000003" DataType="Int / 0003"> <Value>0</Value> </Property> <Property Id="SmtpAddress / 0000000039FE001F™ DataType="String / 001F> <Value>melindap195463@hotmail. com</Value>

How do I stop the inbox rule returning? I feel like going crazy trying to stop this from getting worse

Thanks for any help!

Hello, first of all I'm going to explain what a Superbox is, and follow this up with my question below so if you know what it is, skip a paragraph. Basically a Superbox is an Android computer used to stream channels via IPTV. I understand that the legality is a gray area. I also understand that the security side of it is a pretty big concern. Pre-configured android devices like this are practically screaming to give someone a backdoor into your network. This is where my question comes in...

I also am pretty well versed in cybersecurity and networking. (I'm a Network Engineer with a degree in cybersecurity and network management. I have my Sec+ cert as well.) If I set a Superbox on its own VLAN, if I set the VLANs to not communicate with the SB VLAN, if I pointed the router to a filtered-DNS, and I controlled the traffic that comes in and out of the Superbox VLAN via an Edgerouter X with firewall rules so that only the expected traffic types are allowed in/out, can I then negate the security concerns?

From ransomware to cloud misconfigurations, financial institutions and other organizations face no shortage of cybersecurity challenges. Discover 6 cyber security issues in 2026, industries at risk, challenges, and best practices to mitigate threats effectively.

#CybersecurityconsultingservicesUAE

#CybersecurityservicesinDubai

#CybersecurityservicesproviderUAE

#CybersecurityexpertsinDubai

#CybersecuritycompanyinUAE

I am a computer science student and I have a website up and running for a friend. When you searched google for the website it used to show a listing with the correct URL for the website and the description from a meta tag.

Somehow someone managed to change the listing. Everything else is exactly the same but the link for the website has changed. I'm assuming they just copied the information and created a fake website so that google would rank their website instead of mine but wouldn't that still leave my listing up?

So my question is have I been hacked? How can I change this? And what can I do to protect myself, my friend and their customers going forward?

P.S. I have noticed suspicious attempts to log into my server. They have failed from what I can see so far. Is there some other way that they could have gained access that wouldn't show up in the authorization logs?

Dear Plex User, We have recently experienced a security incident that may potentially involve your Plex account information. We believe the actual impact of this incident is limited; however, action is required from you to ensure your account remains secure.

What happened An unauthorized third party accessed a limited subset of customer data from one of our databases. While we quickly contained the incident, information that was accessed included emails, usernames, and securely hashed passwords.

Before bringing a laptop to a repair shop (let's say you're getting a battery replaced), I have created a separate, isolated local user, since the shop may ask for password or PIN for access, which in turn gives a person access to my files, and potentially even security or cloud data, such as Apple Password.

If you use disk encryption, I am not worried about exposing data to the separate account, but is there anything I need to be wary of or to prepare?

Let's assume that it's a reputable shop, so I am not concerned about key loggers being installed. I'm also not concerned enough to backup and wipe clean a device prior to repairs. Most recent laptops prevent removing a disk drive, as it was possible in the past, so that's not an option.

Long story short I my pc got hacked because I installed something mistaking it for another. IAM stupid ik I clean installed my windows But I transferred my game files before it to external hard and then to my pc IAM stupid again I ran bitdefender and malwarebyte scans and found nothing except maybe some files and the Anti virus quarantined it . The hacker was trying to get to some accounts that are useless and old and I changed password of those linked accounts at the moment ( idk if this is his efforts to get anything these are made with the Gmails he got from my pc and I secured those changed pass and already have 2fa on them ) So is still possible that he is still on my pc I ran scans again nothing is there . Sorry for the long story short

One day, I was walking along a watch store, just admiring the rolexes. When I left, I opened my instagram and discovered ads about rolexes.

How is this possible? Prior to that day, I hardly googled "Rolex", let alone watch browsing. The timing of it raises alarms. Help me understand how instagram knew my at-the-moment interest.

On Friday my daughter woke up to two emails in her gmail account, on her mobile phone, from what looks like a genuine Microsoft support email address. The first states a process has started to take over account (email address here with some asterisks to disguise which we are not immediately familiar with), by a completely new email address with nothjng blocked out. The second email states new app(s) have access to your data. She clicked on a link from the first email for “if this was not you” however this proved useless and we could not gain access.

The confusing thing is we have both only used a Microsoft account through work and uni. We had recently struggled writing CV’s and cover letters using Google docs and had been saying how we should bite the bullet and pay for an account.

Fast forward to a couple of hours later, I receive on my mobile phone (not my daughters) a text from my bank (also genuine as attached to a thread of old messages from the Halifax). This text contains a passcode with a message saying not to give to anyone who calls, and is for £299.98 to Microsoft. I open and read the message, do not receive any calls asking for the code, do not leave my phone unattended (my daughter is not a thief, liar nor has any interest in Xbox) and check the banking app straight away. There I see two transactions for £299.98 each for XBOX!

I call the bank straight away and explain what happened. I initially tell the fraud agent that we do not have a Microsoft account or an Xbox. She searched my banking history and found two other transactions to Microsoft, advised that the transactions were authed by a passcode, then announced “based on the information given to me today I cannot refund this” and that was the end of that.

After the panic and adrenaline dies down I chat to my daughter and we study the email mentioned in the first email with the asterisks and deduce this could be a genuine Microsoft account from some 13 years ago when she did indeed have an XBOX.

We can’t get the Microsoft account back, the bank seem to think I made the transaction - until I got upset and angry, they finally agree to refund as the £600 drains my overdraft and I’m utterly screwed, and they advise it’s temporary and if Microsoft contest the charge back they will have to charge me again at a later date.

I am gutted and terrified of either Microsoft contesting or it all happening again. One agent at the bank advised it’s rare but could be a phone clone, and advised I order a new sim which I have done. This feels unlikely though as surely other things would have happened by now?

Does anyone know how someone could gain access to the passcode text? Again, I did not give the code to anyone simply read the text. No one else had access. Please help me understand what has happened, and does anyone know what else I can do as I feel helpless. I have reported to Action Fraud Police but don’t have much hope.

Thank you so much for reading so much! I appreciate any advice.

so i was browsing through discord on my phone, then i saw someone had spammed grabify links in a chat, i tried to exit but accidentaly clicked on it and it opened like a browser from discord (if you use discord in your phone and open a link yk) i closed it before it even loaded in. just wondering what couldve happened and what might happen, all i know is that grabify gets ur ip and location stuff, but thats like public. you can find it on google maps aswell. just want some answers.

Hii I work in cybersecurity I m looking for a way to disable external hdmi being connected on my windows system in c#. I tried setup Api and changing the configFlag in registry to 1 but still it is not not been disabled. Any suggestions. Which I can apply to make the program run

Dad received malicious apk on WhatsApp. Tried opening. Selected "ReadEra" reader app from the android system dialogue box. App said file type not supported.

Dad tried again, but this time selected "package installer"

Android system dialogue warned against installing from untrusted sources, realising his mistake, he stopped attempting to install.

I want to ensure there is no risk of infection on my father's device. I sent it to myself on WhatsApp to upload to VirusTotal. I've not installed it either.

I have reported the account on WhatsApp and deleted the file on my dad's phone.

Should I take any further measures or get it checked in person with a professional?

Thank you in advance.

Virus total report https://www.virustotal.com/gui/file/c007ba4de1fd9ae4fc64061bf030337caac638bfec9bbe62948c37e18a62fda7/detection

Can you help me?

Attackers are abusing iCloud Calendar invites to push callback phishing scams. Victims get PayPal “receipts” for $599, then a phone number to “fix it.” When they call, scammers trick them into giving remote access and stealing money/data.

Since these invites come from Apple’s servers, they pass SPF/DMARC/DKIM and slip past spam filters.

This is a perfect example of trusted infra being weaponized.

🔎 Question:

• How should enterprises train users to spot “legit-looking” invites like these?
• Should Apple/Microsoft adjust mail handling to prevent this?

I genuinely don't know we're to say this and ask for help, been getting random transactions in my paysafe account I only had 10 dollars or smth buyed my brother some robux and now I have nothing on that account but I've been getting like a 25 dollars transaction failed email every day and I afraid some one might have all my accounts and everything, cuz as a kid I was pirating a lot of games and programs, and now entering adulthood kinda scared for security ngl and idk what to do

Somebody managed to hack my Google account and registered a phone number in it.

I couldn't take a screenshot out of it, so I don't know what number was it, is there a way to find out what number was it?

Hey everyone,

I was trying to compress a sensitive file and stumbled upon this website, iLovePDF.com website online. It seemed like a good option, so I started uploading my file. But halfway through the upload, around 80%, I suddenly realized that I might be putting my sensitive personal information at risk. I panicked and canceled the upload.

The thing is, the file was pretty large, so the upload was taking a while. Now I'm freaking out, wondering if my sensitive data is still out there or if it's somehow floating around on the internet.

I found out that the servers for iLovePDF are located in Barcelona, Spain. While they claim they remove the data or files within two hours of upload, I’m still concerned they might be storing my file’s metadata or somehow keeping my information.

I just need to know:

• How do I make sure my data hasn’t been saved or leaked by the site?
• Should I be worried?
• Is there anything I can do to make sure my information is secure?

If anyone has any advice or has experienced something similar, please help! I'm freaking out right now.

Back in May, someone hacked into my account on a popular betting site in my country. I closed the account right away and immediately changed all my passwords when I noticed the suspicious logins.

What I’m really worried about is that my personal details (like my national ID number and document series) could have been exposed. On that site, all someone needed to get those was my date of birth.

I already took steps to protect myself: • I flagged my national ID number so no one can take out a loan in my name. • I set up alerts that notify me if someone tries to open credit under my identity.

So far, nothing bad has happened and I don’t have any loans or credit attempts against me. But I’m scared that in the future someone could still misuse my info—for example, to open shady crypto exchange accounts or even bank accounts outside my country.

Has anyone been in a similar situation? Should I be taking any other steps to protect myself long term?

the other day my dad yelled at me and asked why I was smoking because he saw a video of me. Directly after he asked what guy am I talking too that’s older that him off of snapchat. I confirmed that I was smoking but I have no clue what guy he’s talking about. He responds by saying “it said connections established” and then left my room mad. Could he be hacking into my account or phone? He’s not really tech savvy so i’m a little confused. if anyone knows what app this is I would love to know

Hey everyone, I was browsing looking for free football games and a pop up occurred and something actually downloaded with zero user interaction. I realized the issue and deleted it instantly and removed it from my trash bin on windows 10. It was an “operagxsetup.exe” i didn’t run it so from my knowledge I should be good correct? Running a full windows defender scan as we speak but any help is appreciated

Hope this is the right sub)

So i got this keyboard off of amazon, epomaker something something, and It’s really nice physically. But when I plugged it in it worked perfectly. Once i went to download its respective software, the official files they offered were flagged by windows AV - not sure if its a false alert. I deleted them and moved on, after that I at a point had problems with my pc drivers and the usb ports and since I had it plugged in and that was the only recent change, I blame it on the keyboard…

My question is whether it is possible for it to be malicious or force install some software when plugged in, and if there is any way to check if it’s safe.

Thanks

they gave it a name similar to what i would've used, made it public, and it has <10 followers. im not sure if the person who did this wants me to access the account for whatever reason & whether this is safe or i should avoid it

Hi, wanted to install Adobe premiere pro, but used a link from youtube and got hacked

I realized while seeing my instagram following people automatically, so I removed the files I downloaded, checked my recent app installation and uninstalled an app I did not know about, removed a microsoft defender exclusion that excluded a folder from virus scan and did a complete scan with windows defender, did a scan with Malwarebytes too

I managed to change my google password, instagram, emails and facebook BUT

After several hours, saw someone connect to my microsoft account, is it possible that they had time to take all my password from google password manager? and should I change all my password inside the manager? If yes, is there a faster way for doing it?

Should I reset my windows? and can I keep my data or should I completely reset everything and keep nothing? I'd like some quick advice as soon as possible please

So, we have a family business that's been around for years but we never really made any emails/Facebook accounts for that business.

We hire someone to work for us every now and then, and they usually stick around for at least one month, and up to years.

Recently we hired that young woman that seemed very excited to work for us and she was going above and beyond to show that excitement, and so she decided (without us asking her to) to create an email and a profile for our business, and so she did, and as soon as she did she had someone contact her.

We saw the whole thing as positive at first, I was skeptical but before I got to make a judgement, she had already decided to quit the next day and was acting pretty weird about it, she had only worked for us for about 4 business days total.

For context, we have a lot of competitors, and they had tried in numerous, direct and indirect ways to steal our clients, know our prices, buy our business, etc.

We're assuming she too might be connected to a competing business, so we wanna log into that email she created (she gave us the email and password when she first did) and either change the password and use it for ourselves or just delete it, but I'm unsure if it's safe to log into it on my personal phone (Android) where I have my other emails listed and where all my profiles, information, and pictures are, and we don't really have a "business phone". What's the worst that could happen?

Edit: someone downvoted the post without even helping or leaving a comment, I don't understand why some people are so dismissive. I'm asking a question, I'd appreciate help and I really need this help before someone misuses the account.