this post was submitted on 22 Jul 2023
87 points (95.8% liked)

Technology

74381 readers
2737 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
87
How do I prevent hackers from stealing my debit card information? (lemmy.world)
submitted 2 years ago by Snowman44@lemmy.world to c/technology@lemmy.world
67 comments fedilink hide all child comments
 

My wife and I keep getting our debit cards stolen online. We notice the charges and are able to dispute them and cancel our cards, but it sure is annoying.

We don't put our card information on suspicious websites. They're on well known websites like amazon and Facebook.

We ran out emails through a data breach checker and it found nothing.

I don't think there's any malware on our devices.

Any idea what could be happening and how to prevent it?

you are viewing a single comment's thread
view the rest of the comments
[–] EdibleFriend@lemmy.world 31 points 2 years ago (8 children)

how do I fix this?

probably like this.

No :(

[–] RagingNerdoholic@lemmy.ca 20 points 2 years ago (7 children)

To be fair, factory resets are a huge pain in the ass. Might as well try other things before busting out the nuclear option.

[–] nous@programming.dev 9 points 2 years ago (3 children)

Once you suspect a device is infected the only good option is the nuclear option. Anything else will not be guaranteed to 100% remove it, or really, anywhere near close to that, or even detect everything wrong in the first place or after attempted removal. And with a month long period between attacks that is a long time to wait and see to see if any other option might work.

[–] RagingNerdoholic@lemmy.ca 0 points 2 years ago* (last edited 2 years ago)

True, but I would confirm a device is compromised before nuking the OS, not just do it willy-nilly because maybe it could be. A better way to phrase what OP is asking is: what are some ways to troubleshoot this without making a ton of potentially unnecessary work for myself?

...to which I would say, run a netstat on any systems that you can, check those IP's against WHOIS and/or traceroute. Anything that traces to Eastern Europe, Russia, China, most of SEA is a red flag. Dig a little deeper with Wireshark or Glasswire to inspect some actual packets for suspicious content. I think there's a network logger that can trace the process using a given connection, but the name eludes me).

Find your smoking gun, then torch the OS.

load more comments (2 replies)
load more comments (5 replies)
load more comments (5 replies)