- Sep 26, 2015
- 1
- 0
- 4,510
Before I get into explaining the whole situation, I am not an amateur computer user. I never run anything, and whenever I want to install something that could potentially have any sort of adware or spyware in it, I always use a virtual machine. I use different passwords for everything and have a VPN on sometimes. I don't click on links from anyone besides YouTube videos or something that is obviously safe.
Let me start from a while ago. In January, all of my unlisted YouTube videos got made public randomly when I wasn't even on my phone. I had 2 step verification on this whole time, linked with a phone number that no one knows besides my family. I used a secure password (11 - 17 characters). Earlier that day, there were some Japanese people in a community I'm in who kept spamming me with an image. After I got hacked, someone suggested it could be a 'jpeg 0day exploit' that the image had inside of it. However, I was on my phone the whole time. It is unrelated to my desktop PC because it was off the whole time. To be safe, I formatted, took out the battery, and threw this phone in a box and got a new one (I'm a security freak). My Google account had no new sign-ins that I didn't recognize. I changed all my passwords multiple times since then and haven't seen anything suspicious until a few days ago. At 4:40am, someone in a Skype group I was in asked a question to someone else, and I apparently answered "yes" to it a minute later. I was asleep at this time and both my phone and PC were turned off. I know they received the message at that time, too, because they said "Oh hi, I didn't know you would be awake." I changed my passwords again since then and formatted my PC like I do every 2 months (Again, I'm a security freak).
My question is am I hacked or being keylogged? I'm looking for a very technical response from someone who has extensive knowledge in this field because I've already asked many people who have decent security. To reiterate- I never ran any files or installed any APKs on my phone, never clicked any links, have 2 step verification on all accounts that support it, never gave my password to anyone, use different passwords for every website, use secure passwords, format PC monthly, use a VPN sometimes, and generally do everything I can to keep myself safe. If you think I'm hacked, please explain how I can prevent it from happening again in the future. Keep in mind everything I just said. I know all of the basic security practices.
Thanks ahead of time
Let me start from a while ago. In January, all of my unlisted YouTube videos got made public randomly when I wasn't even on my phone. I had 2 step verification on this whole time, linked with a phone number that no one knows besides my family. I used a secure password (11 - 17 characters). Earlier that day, there were some Japanese people in a community I'm in who kept spamming me with an image. After I got hacked, someone suggested it could be a 'jpeg 0day exploit' that the image had inside of it. However, I was on my phone the whole time. It is unrelated to my desktop PC because it was off the whole time. To be safe, I formatted, took out the battery, and threw this phone in a box and got a new one (I'm a security freak). My Google account had no new sign-ins that I didn't recognize. I changed all my passwords multiple times since then and haven't seen anything suspicious until a few days ago. At 4:40am, someone in a Skype group I was in asked a question to someone else, and I apparently answered "yes" to it a minute later. I was asleep at this time and both my phone and PC were turned off. I know they received the message at that time, too, because they said "Oh hi, I didn't know you would be awake." I changed my passwords again since then and formatted my PC like I do every 2 months (Again, I'm a security freak).
My question is am I hacked or being keylogged? I'm looking for a very technical response from someone who has extensive knowledge in this field because I've already asked many people who have decent security. To reiterate- I never ran any files or installed any APKs on my phone, never clicked any links, have 2 step verification on all accounts that support it, never gave my password to anyone, use different passwords for every website, use secure passwords, format PC monthly, use a VPN sometimes, and generally do everything I can to keep myself safe. If you think I'm hacked, please explain how I can prevent it from happening again in the future. Keep in mind everything I just said. I know all of the basic security practices.
Thanks ahead of time
Facebook
Twitter