I GOT HACKED! - A Lesson in Password Security
Вставка
- Опубліковано 21 жов 2024
- NOTE ➤ From now on, I will be making all tech videos on my main channel here ▶ / thiojoe
The other day my AppleID was hacked because I didn't follow my own advice on password security. It's all fixed now, but I thought I'd tell the story for those who find it interesting.
▼ More Videos ▼
Have You Been Hacked?: • Have You Been Hacked? ...
LEDs vs CFLs: • Are LED Bulbs Worth It...
They got revenge because their internet connection wasn't doubled.
yeah true
Comment of the week right here.
My balls are falling off
Instead it was censored
😂😂😂😂
Just remember. Instead of using "Password1" as your password, use "Password2"
Or Password3 or DeezNuts or FuckDonaldTrump42069
PasSwURrPRD42036069noscope. Is a better one.
What if I told you my username was:password, and my password was:username.
Or use a better password like your name or birthdate
wordpass9 seems to do the trick for me
So, i saw the title and i was like. Hah, ThioJoe, its fake. Then I saw that it was from ThioJoeTech and im like, oh crap
Yea watch it be someone in Another country that watched a video on his thiojoe channel that got mad because they got trolled and decided to try to hack him
Thug Life
I worked as an iTunes Support for 2 years (2016-2018) and everything you said is so accurate. Unauthorized Chinese in app purchases are so rampant.
Shit gotta change my "qwerty" password some day soon...
You've been breached
Thank you Gabon that I have qwertz keyboard.
+Daniel Young because it's a joke haha
Marek Kacprzak you don't either it seems
+Al Eks where have I seen you before?
my fb account got hacked once , but the hacker gave it back to me cause i had no friends in it . *sigh*
╥﹏╥ pityful
Shit that's harsh
What's fb
lol
GamingWithTash No
Best way to protect your password put an emoji at the end of your password
+Khail M put :)
put a :)
+Mewku Minoru thanks for the tip 😄
but if you put a real emoji like from the iphone keyboard, you can log in to it, but it is extremely difficult.
WOW i never thought about that.... thats acctualy a NICE idea :D.
.... but what if you are using an pc :) and try to login skype on pc and using a emoji :D :P
The Chinese don't care about hacking everyone's computers and stealing stuff but when one of our Aussie swimmers calls one of their swimmers who is a drug cheat, a drug cheat they start crying.
nah, he probably was from the Ashley Madison beach
of course
Or the recent lonkgaydicks.com breach
+Miles Wilson this is why i never use apple or any online account with credit cards at all
Pretty bad that the account was hacked without any actual "hacking". It should be obvious that a new sign in from a foreign country is suspicious. It should of at least asked for a confirmation email before letting the person into the account.
it was having its a type of hacking that's called phishing
Logan Bailey Phishing is when you try & lure somebody into getting hacked by sending something like a suspicious email by pretending to be iTunes to gain access, etc.. this wasn't phishing since they just got the password from some list & tried it.
@@ColtonBlumhagen
Apple Has Two-Step and Two-Factor as options for verification. I have been going through all my security protocols since the summer of this year.
I periodically even go through the secret questions and change them.
Any security options you have for your accounts. Turn it all on!
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
Apple has Two Step and Two Factor Authentication. Of course Apple does not use FIDO keys. You must own an apple device. Nor do they use the open OTP standard.
I use Two Step. It is flexible. The question answers can be changed.
I recommend this option to all Apple Users
Everybody knows when you get hacked you call the president. ~ThioJoe Why did he call apple??
Not the president per se, it's the state department through their website but up need to verify your identity by adding your SS# at the end in the url. You'll get a window where, if you know it, you need to enter the zip code where you were born. Enjoy.
Jake Pedersen a
Jake Pedersen no! i wasn't told that!
@@Real_LeCHL well now you know
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
I got my Facebook Account hacked, I didnt give a shit
+LoLNoob96 Facebook?? What's that? :-) I've got lots of FB followers, and I've never had an account. People have setup their accounts using my email account. I still get follower's even though I never confirm their attempt. It's happened enough times that I've got a link to their FB support for those who don't have a FB account.
+LoLNoob96 Use two-factor authentication (for those that do care): facebook.com/notes/facebook-engineering/introducing-login-approvals/10150172618258920/
my yt account that I'm using now is hacked someone changed my pic
Yeah I don't use Facebook except for verifying stuff
TJ , Good info , I enjoy watching your videos. I am a 67 year old senior geek and all my senior friends think I'm nuts because I spend a lot of time on my computer. Most of them can't even send a text. Keep up the good work young man and you will be rewarded.
Thanks
You're 72 now, hows life mister?
This should be a lesson for Apple too. I can't believe such a large company would make it that easy for people to get into random accounts.
If only Apple had the security warning like Facebook
or steam...
steam is really strict.... too strict..
+Myra Arcadia Omfg I hate that it's like that.
its good steam is strict, being someone that has hundreds of dollars worth of games and that being stolen is not fun
HattyHattington you got a point
It's all about that 2 factor security. Never fails. Gmail almost got hacked, but thankfully my phone was required lol.
SMS do not use it if it can be avoided.
Back in day I used the same email address and password for ebay and a motoring discussion site. One of the moderators on the motoring site then made some disparaging comments about some alloy wheels I had recently purchased which obviously made me a little suspicious as to how he knew this. Right enough, when I logged onto my ebay account I realised he'd left negative and abusive feedback on several items. This was in the days before sellers couldn't leave negative feedback and two of the sellers responded in kind. Since that day, I don't have two passwords the same and all of them are long are randomly generated. Lesson learned.
Ironically I just went through and enabled two-step verification on 8 different accounts today for the first time... one step - err, two steps ahead of you, Joe. :P
Here is kind of a random thought, but here's how a friend of mine keeps this kind of thing at bay. On his iTunes, Xbox and PlayStation setups, he never has any credit cards or anything attached. When he is going to buy something off of them, he just buys cards worth the amount he plans on spending from Walmart or a 3rd party like that and makes sure the money is spent so there is no real gain to getting into his things.
ThioJoe, are you using the old camera?
I was hacked by a Chinese guy who got my IP from nowhere. He accessed my PC and changed my PC to a Chinese theme, added a RAT so they can use it after recover and they also downloaded a lot of useless applications and bought 3 things (I forgot what were they).
Cool Video Thio.
I used to suffer from such attacks too once, but now all my important accounts (Apple, Microsoft, Google and Github) are protected by two-factor authentication. So the only way of breaking into my accounts is physically stealing my iPhone.
why do you have an apple ID if you have an android?
but then again......I have the same thing..
+sam “akajoker195” mark - He uses iTunes.
I'm sure he used a Iphone before too
He had an ipad just like me
+Richard Gustafsson but he was smart enough to trash it, or sell it to a dummy who uses IAnything. If you have a favorite Voice contestant, you can vote for them by buying their song on ITunes. What a racket.
He said in the video he still uses iTunes
So how did you get everything back? They have got into my Mac book as well & my iPhone. Please help. I’ll even pay you.!!!
This has happened to me & I’m trying to get this all back!
Wow, that added device security circumvention is a huge vulnerability. I wonder how many others are falling prey to this technique right now?
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627.
My macintosh XL just got hacked, what should I do Thio Mijio?
destroy it with an axe
burn the witch
kill it fire
throw it into the volcano
call a pyro
...fire is always the solution
you are my educational role model
Google and Apple should have a 'Ignore Other Country IP' option for administration functions. Like a credit card you can tell them when you go on a trip outside your country (state, province whatever ..).
Google accounts already have that.
Thanks. I'm definitely checking that out.
An IP can be masked to appear from another location without difficulty, but worse is nothing.
Yes when this happens it's quite scary..
You originally stated it was most likely through a leak that they obtained your password, hence a weak password won't stop that type of hack.
True, true, but if an account is suddenly being accessed and details are changing by a guy on the other side of the world, 9 out of 10 times something is wrong. Apple should have at least had some security checks in place in such a case.
hunter2
That is why I only use genuine windows products. :)
This is why I use a Nokia Brick!
Because that protects your iTunes Apple ID right?
+MinecraftBysup69 yeah coz if they hack it then you can just chuck in into their face
lol
Use 2 factor authentication whenever possible. Apple, Facebook, Twitter, Google, the list goes on, all support 2 factor. Many also support 2-factor with Google Authenticator. I have all my most import accounts (that support it) locked down with a password and then a 6 digit number from authenticator on my Nexus 6. ThioJoe also mentioned if you lose/factory reset the device you're locked out, not true, they always provide codes you can print and keep in a secret place (safe, lock box, whatever) or use your phone number to get an SMS instead.
Finally a good video. Just want to be honest
What you said about Google - hard to reach - may be true, but in my case they handled it better. Two years ago, I was tricked into logging into a fake Google form. Within minutes, I received an email from the real Google, that someone in Phoenix (Az.) had tried to login into my email account. They'd killed the attempt, because I normally login from Europe, and they notified me that I'd change my pw, which of course I did. Very neat. No harm done.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
You were lucky to not lose all your data in your Apple ID account. Also this could be connected to the Vtech hack a few weeks ago.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
I've been hacked twice. Once on my WoW account - horribly poor pw that I'd been using since probably the early '90's. I did get all my stuff back so changed it immediately and invested in an authenticator. Also had my Origin account hacked but since I had nothing in it except for the free 'On The House' games, I think the hacker just went on his merry way. I was able to get the pw changed but, as with your iTunes account, the secret questions were all in Chinese. No big deal on that one.
Thio Joe, you better use Google Translate for that weird Chinese characters. And, Thio Joe, passwords should be strong. My Yahoo password has 21 characters.
Scott Pilgrim vs the internet
Sorry thio. But this is actually pretty funny. You've talked a lot about account security, safety of your data and stuff like that. And now you got hacked. The irony..
Thx google for always checking with my alternate emails
ThioJoe hacked my account just because I watched this youtube video. He is that good!!!!
They need to use your oil refresh trick on thiojoe
I use a password manager. I generate password from the alphabet, all symbols and let them be 16 characters long as default. Only catch is that you have to keep the password manager safe and your master password safe. You will now be a lot more safer, and only have to remember one password, but one good password.
I have uploaded the password manager to a cloud service which has a 2 factor authentication, and a password generated from my password manager. So the manager is also available through my cellphone in case something were to compromize my computer (which actually happened).
I do not recommend you to remember your passwords, because if you want your passwords to be safe, and easy to remember, you have to make a compromize.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
i don't believe ThioJoe... no matter what
Lol this is his Main channel so thiojoe the other one is the comedy channel search up "thiojoe explained" and read descripton
He does REAL vids now too.
Sup thio it's uzair u don't know me but I am a huge fan
Hi thio joe can you tell me how to protect my itunes
Spent it on some game? It's actually a 'fairly' good way to transfer stolen money through in game currency, if it's tradeable.
Thank you for the information, greatly appreciate the heads up!!!
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
That site doesn't seem to work but there seems to be huge amounts of hard disk activity. Something you might encounter in an evil site??
Steam has a worst customer service ever!
don't you mean 'Lord Gaben will make you pay'
Steam has multi factor authentication. Did you activate it. You need their app.
Is this a New Jersey accent?
I'm just wondering because of the way he says 'awesome' in 4:03
For Apple if u have a card attached to your account it asks for the code on the back of your card before u can buy anything even the iTunes credit.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627..
Using that non-free software..... Richard Stallman would not be proud.
My Facebook was hacked but luckily, Facebook disabled my account until I placed my phone number then verify. When I checked the chat, I found out that the hacker chatted links to a radio station website. Then, I saw my friends chatting "wut?"
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
The tip for 2FA is to save a screenshot of the QR codes in case the device is lost. I have lost mine once and resetting everything is a pain. I still haven't recovered some accounts because I don't care plus it starts getting into weird territory (D.O. wanted me to email them a selfie of me with my ID card.. over unencrypted mail)
You are correct. You have two options.
1) Use a Google Authenticate. Then backup the QR Codes. Which means putting them in a file. Then encrypt it. Then encrypt that file.
2) Or you can use Authy
authy.com/
3) Change your passwords weekly.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
@ThioJoe What a pity, your account has been hacked. I also got my Gmail account hacked.
thats why I always use paysafecards for online purchases and makes sure I use it all that same day, no credit left.
I think blackberry had better security then Apple. I don't understand how that's remotely possible, but it is.
my friends iphone 6s was hacked all pic and messages were showing on hackers phone.. how did they do it??
Is it real Hacking or just Guessing a Password?!?!
Well I believe the only way to stop this from ever happening is to have different passwords for each service which you use.
Contacting support every day 'cause "someone changed" it.
I use the same password for everything: tible47
if this is possible, what's the point of a recovery email???
You are handsome, but your clean-shaven look is better than the fuzzy version. Best wishes, B
Never liked apple.
But apple fan boys always rave about how secure they are...
That sounds like the least secure shit I ever heard off :')
Wow that sucks! Where is the 60 fps new camera though :P
I Am unsure how they could breathe because it was linked to your email still. He/she should have changed the email first
I removed his device and changed my pass do u think I'm safe
Someone from Portugal tried to log into my Twitter account. But, Twitter actually has decent security, so I was still able to access my account.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
Use "Authy" for the 2 Factor Authentication, if you loose your phone you can log in to authy from google chrome or the new phone and will not loose the keys.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627.
Authy is a flexible product. However, I suggest migrating away from it. Use something that is a standalone OTP client.
Any authentication system tied to your phone number is a risks. If you lose access to the number. It is harder to restore the Authy account.
I keep forgetting to check if it's thiojoe or thiojoetech
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627..
I also got hacked by someone in Belgium, but he wasn't smart, cause i didn't had any money in that account. It was my main Google Account, but i don'thave money, i'm still 12. so yeah.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
You're never supposed to use the same password to multiple accounts. Wow.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627..
@@marcylinda4285 Do not spam in my comment please. It is irrelevant to my original comment.
I'm confused. This video sounded legit and had no instructions with the only obvious joke being a reference to another video at the end.
Bad luck Joe
what das it mean if my linght id on near the camrae
How'd you got e-mails after the email address on the account was changed??
I'd say the second email
+Joshieo303 if he had a recovery email linked where he gets notifications about the account, the hacker probably changed it
Not all breaches are made public right away. You are basically never safe...
Can u get hacked if u use 2 factor authenticator?
Happened to me before. Someone bought game points from China on my account. Apple helped me out. I never added credit cards or Paypal on my Apple Id after that.
you have the gaze of miracles
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
thank you very much will definitely try this.
the troll got trolled lulz
Hey man, if you feel like you're getting act, you do not need to change your password. On Apple, Google and other sites, they have this authentification they use called two step verification. Let's do you know who finally in, and rather you want it approved or not.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627.
"I was using the same password and emailadress"
... Guys i got hacked in portal 2 xbox 360 WHAT DO I DO
GLAD that you've been hacked ! It will teach you not to make stupid videos that takes advantage of not so technically inclined youtubers... (you know what I mean)
Never use the same password for more than one account. Never start a password with the same letter or symbol. Once a month change every password simply by moving your passwords two ahead or back on your list or several passwords. Yes, use on possword more than once but never for the same log-in on the same web page. Once a year, on some random day, start over with 10 or so new passwords. Better yet, never attach a password to anthing having to do with money. Just do banking, and bill paying in person or by check or cash. Where to storre your current passwords? Under a mattress you don't sleep on, in your back yard, in your lover's car trunk. If you have more than 10 passwords, get out and go for a walk; because you're spending too too much time on a computer and missing life. You do not need a password to go for a walk.
nah, you playing dawg, all you need is to hack into where you have your account and make a one character password, no one will ever know
I use lastpass w/ Yubikey 2nd factor authentication, this allows me to have 24digit+ alphanumeric upper and lower case with symbols and never use the same password twice. Lastpass even has a little security challenge scan that looks for duplicates and gives a security score.
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627.
Thanks, Thio... and I have been pwned in several of my accounts!
I’ve been hacked on 3 other UA-cam accounts that I’ve had from about a year ago
I hope you have utilized FIDO recovery keys. As well as an authentication application.
That's why you always get the email password first so they don't know until it's too late
I never thought I’ll be able to recover my account, I have literally tried every video UA-cam non worked out until I saw a comment here about hackerchain01 on IG and I hired his services in less than 30 minutes and I get my hack account back +14126940627
Why did you tell us that you have credit on your iTunes?... Start hacking guys
OMG WE NEED SOME PASSWORD HAX
couldnt you use google translate ?
good work man
Wow I cant believe someone would do this..
wtf I thought people are paying so much money for Apple product because of its security. I think Android is better now
that doesnt mean this doesnt happen with android lmfao, stupid kid