Malicious keylogger?

Questions about other topics - please check if your question fits better in another category before posting here
Forum rules
Before you post please read how to get help
Post Reply
jdmckay
Level 1
Level 1
Posts: 25
Joined: Fri Dec 16, 2011 11:18 am

Malicious keylogger?

Post by jdmckay » Wed Jun 12, 2019 11:31 pm

Hi,

I have been receiving spam for a while from hacker who claims to have installed a keyboard logger on my system. Says my computer was infected from a **** site (I never view them). I never worried about it much: he (?) always sent spam with my email address and I know this is easy to do. He wants bitcoin to destroy info he says he's collected (again, nothing I'm worried about).

He's also said he has my email contact list (I do not use any social media on this computer).

I'm posting because I got the same spam last night, but return email address is one from my contact list which I haven't used in 4+ years. So I wonder how he got that?

I'm running Mint 18.3 (always updated weekly), have latest FF and Google Chrome.

I thought I had my Firewall on BASIC, just checked it and it was off (no idea how that happened).

I'm not adverse to doing a fresh install if the gurus here suggest it. I just installed 19.1 on new laptop, it's fine (a few minor hiccups I"m sure updates will address). I would like to know if indeed a key stroke logger got on this machine, how I can detect it and how to prevent it in the future.

I realize this may be well discussed topic: I did search of the forums and couldn't find anything that addressed my questions.

And FWIW, my email runs on NAMECHEAP using my own domain.


Thx in advance.

User avatar
pizzadude
Level 2
Level 2
Posts: 54
Joined: Sat Aug 06, 2016 3:57 pm

Re: Malicious keylogger?

Post by pizzadude » Thu Jun 13, 2019 12:02 am

Known spam email:

https://krebsonsecurity.com/2018/07/sex ... passwords/

Just keep ignoring them.
Image
Visit my blog LinuxSurge if you like websites that haven't been updated in over 2 years

User avatar
philotux
Level 5
Level 5
Posts: 833
Joined: Sat Jul 21, 2018 11:14 am
Location: Utopia

Re: Malicious keylogger?

Post by philotux » Thu Jun 13, 2019 2:53 am

pizzadude wrote:
Thu Jun 13, 2019 12:02 am
Just keep ignoring them.
+1
I got a couple of mails with more or less same content a while back. I ignored them and nothing nasty happened.

User avatar
Moem
Level 19
Level 19
Posts: 9530
Joined: Tue Nov 17, 2015 9:14 am
Location: The Netherlands
Contact:

Re: Malicious keylogger?

Post by Moem » Thu Jun 13, 2019 3:10 am

jdmckay wrote:
Wed Jun 12, 2019 11:31 pm
I'm posting because I got the same spam last night, but return email address is one from my contact list which I haven't used in 4+ years. So I wonder how he got that?
I can't tell you that, but it's otherwise still the same old rubbish. Ignore, and cover your webcam if there is one. If only for your peace of mind.
Image

If your issue is solved, kindly indicate that by editing the first post in the topic, and adding [SOLVED] to the title. Thanks!

User avatar
lsemmens
Level 9
Level 9
Posts: 2584
Joined: Wed Sep 10, 2014 9:07 pm
Location: Rural South Australia

Re: Malicious keylogger?

Post by lsemmens » Thu Jun 13, 2019 4:54 am

Don't bother to even read such SPAM then you won't need to worry about it. ;)
Kernel: 4.15.0-46-generic x86_64 bits
Desktop: Cinnamon 3.8.9
Distro: Linux Mint 19 Tara

Laptop HP-ProBook-470-G2 8Gb RAM SSD
Server AMD Phenom 9650 - GEForce 9400GT 6Gb RAM
+ three other Mint machines
Out of my mind - please leave a message

PhilippeH
Level 2
Level 2
Posts: 63
Joined: Thu Jul 20, 2017 3:12 am
Location: Toulon (France)
Contact:

Re: Malicious keylogger?

Post by PhilippeH » Thu Jun 13, 2019 5:02 am

jdmckay wrote:
Wed Jun 12, 2019 11:31 pm
I'm posting because I got the same spam last night, but return email address is one from my contact list which I haven't used in 4+ years. So I wonder how he got that?
Faking your email as a sender is easy, but getting your contacts is not, and could be the sign that your email address is or has been compromised in some way. You could try to submit it on this website to check if it is the case ?

jdmckay
Level 1
Level 1
Posts: 25
Joined: Fri Dec 16, 2011 11:18 am

Re: Malicious keylogger?

Post by jdmckay » Thu Jun 13, 2019 10:41 am

Hi,

Yes, I know it was a scam and ignored for months when return email was my own. This one used return email from my email contact list, that's what concerned me.
PhilippeH » Thu Jun 13, 2019 3:02 am

Faking your email as a sender is easy, but getting your contacts is not, and could be the sign that your email address is or has been compromised in some way. You could try to submit it on this website to check if it is the case ?
Thanks, I checked. 3 breaches:

1) Linux Mint: In February 2016
2) Mac Forums: In July 2016
3) Verifications.io

No other nefarious activity that I know of (Identity theft, CC or bank hack etc.) but think I'll change my email/passwords to be sure.

Thx

mediclaser
Level 4
Level 4
Posts: 375
Joined: Tue Mar 20, 2018 2:28 pm

Re: Malicious keylogger?

Post by mediclaser » Thu Jun 13, 2019 10:47 am

jdmckay wrote:
Wed Jun 12, 2019 11:31 pm
...
I'm posting because I got the same spam last night, but return email address is one from my contact list which I haven't used in 4+ years. So I wonder how he got that?...
It is more likely the email in your contact is the one which got compromised. Moreover, if you didn't do the things mentioned in the spam mail, you should not worry at all.
If you're looking for a greener Linux pasture, you won't find any that is greener than Linux Mint. ;)

DAMIEN1307
Level 8
Level 8
Posts: 2215
Joined: Tue Feb 21, 2017 8:13 pm
Location: Alamogordo, New Mexico, USA

Re: Malicious keylogger?

Post by DAMIEN1307 » Thu Jun 13, 2019 10:53 am

Now im really feeling left out...lol...i never get any spam e-mail since i dumped gmail and msn mail and use nothing but protonmail and zoho now...DAMIEN
ORDO AB CHAO

mediclaser
Level 4
Level 4
Posts: 375
Joined: Tue Mar 20, 2018 2:28 pm

Re: Malicious keylogger?

Post by mediclaser » Thu Jun 13, 2019 11:03 am

DAMIEN1307 wrote:
Thu Jun 13, 2019 10:53 am
Now im really feeling left out...lol...i never get any spam e-mail since i dumped gmail and msn mail and use nothing but protonmail and zoho now...DAMIEN
It starts with a bad browsing habit (like not having ad blocker). A classic example was a very old guy clicking on pop-up windows (asking for email) that appear when he visits a website or click on an ad link that interests him. Later on, all the emails in his contact list started getting spam mails about the things he look for in the internet.
If you're looking for a greener Linux pasture, you won't find any that is greener than Linux Mint. ;)

Crippled

Re: Malicious keylogger?

Post by Crippled » Mon Jun 24, 2019 12:18 am

At most the Spammer may have hacked your E-mail account. I would recommend changing your E-mail password just in-case. There is no way the Spammer was able to install a keylogger on Linux mint. You are not using Windows where a keylogger can be installed on top of the Microsoft Spyware/Malware on it. Keep your computer backed up because Linux is not impervious to Ransomeware.

User avatar
Moem
Level 19
Level 19
Posts: 9530
Joined: Tue Nov 17, 2015 9:14 am
Location: The Netherlands
Contact:

Re: Malicious keylogger?

Post by Moem » Mon Jun 24, 2019 12:45 am

mediclaser wrote:
Thu Jun 13, 2019 11:03 am
It starts with a bad browsing habit (like not having ad blocker).
Not necessarily. Having an email address that you've had for a long time, and used in many places, puts you at risk too. Spam and phishing are facts of modern life, no need to have bad browsing habits in order to attract them.
Image

If your issue is solved, kindly indicate that by editing the first post in the topic, and adding [SOLVED] to the title. Thanks!

gittiest personITW
Level 5
Level 5
Posts: 774
Joined: Tue May 28, 2019 4:27 pm

Re: Malicious keylogger?

Post by gittiest personITW » Tue Jun 25, 2019 9:17 am

Beware his friend, The Prince.
Or his cousin, The Government Official.
They all have lots of money they would like you to look after.

Importantly if anyone rings you up - don't even confirm your name, or your bank, or address. They rang you so should know who you are.
If its an old Contacts List - chances are it got hacked from an old server or, did you used to use AOL or Yahoo (that was hacked a couple of years ago) or one of the countless other companies.

Just the fact that they hold 2 or 3 bits of information is not enough to get worried about. With a little time and effort and facebook, its not hard.

User avatar
Pepi
Level 5
Level 5
Posts: 894
Joined: Wed Nov 18, 2009 7:47 pm

Re: Malicious keylogger?

Post by Pepi » Tue Jun 25, 2019 9:24 am

I'm still living High-On-The-Hog from my great great uncle in Nigeria that left me a billion dollars :wink:

gittiest personITW
Level 5
Level 5
Posts: 774
Joined: Tue May 28, 2019 4:27 pm

Re: Malicious keylogger?

Post by gittiest personITW » Tue Jun 25, 2019 9:26 am

Dammit - he offered it to me and I told him to pee off.

DAMIEN1307
Level 8
Level 8
Posts: 2215
Joined: Tue Feb 21, 2017 8:13 pm
Location: Alamogordo, New Mexico, USA

Re: Malicious keylogger?

Post by DAMIEN1307 » Tue Jun 25, 2019 11:25 am

hi gittiest personITW...i love the Machiavellian quote...a "Prince" by any other name...DAMIEN
Beware his friend, The Prince.
Or his cousin, The Government Official.
They all have lots of money they would like you to look after.
ORDO AB CHAO

gittiest personITW
Level 5
Level 5
Posts: 774
Joined: Tue May 28, 2019 4:27 pm

Re: Malicious keylogger?

Post by gittiest personITW » Tue Jun 25, 2019 12:36 pm

Forgive me Oh Dark Lord

User avatar
Pepi
Level 5
Level 5
Posts: 894
Joined: Wed Nov 18, 2009 7:47 pm

Re: Malicious keylogger?

Post by Pepi » Tue Jun 25, 2019 5:13 pm

DAMIEN1307 wrote:
Tue Jun 25, 2019 11:25 am
hi gittiest personITW...i love the Machiavellian quote...a "Prince" by any other name...DAMIEN
Beware his friend, The Prince.
Or his cousin, The Government Official.
They all have lots of money they would like you to look after.
DUDE :lol:

HaveaMint
Level 5
Level 5
Posts: 709
Joined: Fri Feb 02, 2018 9:56 pm
Location: Somewhere in the USA
Contact:

Re: Malicious keylogger?

Post by HaveaMint » Tue Jun 25, 2019 8:03 pm

Pepi wrote:
Tue Jun 25, 2019 9:24 am
I'm still living High-On-The-Hog from my great great uncle in Nigeria that left me a billion dollars :wink:
I know a guy that sent his whole pay check to get his inheritance. I suggested to him to send his next check to the same place to see if they will return his first check. He is a person that has removed any doubt that he is a full blown idiot.
"Tune for maximum Smoke and then read the Instructions".

Post Reply

Return to “Other topics”