I Got Hacked!
HTML-код
- Опубликовано: 2 окт 2024
- Yes, my RUclips Channel got hacked and I still don't exactly know what happened but it was nasty. The 2FA recovery phone number and emails were changed before I even could try. I never got a warning of a sign-in from another location. They just took over my channel.
Same thing with twitter/X, still waiting for that to get resolved, but I don't wish this on any creator. Be safe out in those internet streets. ALL OF YOU.
Thanks for watching! You can support my independent content at / briantong
LET'S BE FRIENDS!
/ briantong
/ nostratongus
/ briantongtech
#hacked #apple #macbookpro
Nobody but da ‘Tong would make a video this positive and this chill…about being hacked. 😅
Glad you're back online. I've been a fan since you're CNET days. Thanks for sharing your experience
That really sucks dude I’m sorry this happened to you!
Seems like same thing happened to other RUclipsrs too. Somehow hackers disable all security measures of YT, Google and Twitter etc. This is a big problem. Lack of costumer support for this also alarming.
"Be a good human"
Unfortunately, some people just want to be criminals.
yeah yeah they want
Or they're bored and want to troll/prank
@@e3vL1 Trolling/pranking does not involve cybercrime I think
@@e3vL1 Trolling/pranking does not involve cybercrime I think
@@e3vL1 Not if you're doing cybercrime
It's scary how sophisticated some of these attacks are.
It's more that these websites' security are crap. How they expose logins in session cookies?
This also happened to Linus Tech Tips. This type of hack bypass the password and 2FA. So No matter how strong security is, things are guaranteed to be compromised.
in simple terms ...when they steal the session tokens, 2 factor won't trigger.. because it thinks the session is from the last computer you signed in from ... for example you sign in with your laptop at home, well you go traveling somewhere else, 2 factor is not going to trigger at the new location because it's the same device
Indeed a great explanation. Much commendable.
Thanks for this. I was wondering how they got past 2FA
Chillest response to being hacked, putting out nothing but love and positivity in the universe, good on you. 😊
Thanks for sharing this. Could save others from the same nightmare. Sorry this happened to you.
Interesting
Dang good to have you back bro!
Sorry this crap happened. Your positivity is great to see. Can’t wait for more content
good to have you back man
Welcome back ! I been your subscriber since your CNET day🙂
Same.
One thing i learned (thankfully never experienced) is to NEVER click any link in an email no matter how authentic it is. You get an email from your bank saying you need to pay your bill? Manually go to the site an do it from there even if the sender is 100% authentic. If a site you use has been hacked and the CEO or security officer from the company says "no user name and password has been taken by the hackers"? BS! Change your password anyways or better yet, if you don't even use that site, close that account.
Glad to see you make this known. People need to be aware of all the different scammers and their techniques.
Glad to know you're back! These emails have been coming in thick and fast for us creators. Got to keep safe out here!
I was wondering what happened. I didn’t think you’d be streaming Elon Musk content.
I remember I was one of the very first people to tell you on Twitter. I'm genuinely surprised the Twitter got hacked as well!
I'm glad you're back nonetheless. ✊🕺🕺🕺
Wow. That’s crazy 😮. Glad you’re back though.
The same thing happened to me. I’m so sorry it happened to you 😢
You said this waaaay calmer than me… I’m glad you are back and that everything is coming back to normality
This kind of fishing scam is going on at every RUclips creator. It's been happening here too. I hope you recover all your accounts and listen everyone, Brian never contacts anyone to tell you you've won ANYTHING. Don't fall for it.
Wouldn’t wish that on anyone. Early congrats on 300k! 🎉🔥
Wow that sucks!! I was wondering where you were. Love watching your tubes.
glad you're back 💪
Glad you got everything back up and running. Keep on keeping on brother.
Thank you for sharing your story. Hopefully we can learn from your misfortune.
Sorry to hear about the Hacking! Hope you get everything back.
Very glad to see you’re up and running again, I was definitely worried! The hackers these days are the lowest scum of the low.
Sheesh bro! That's terrible. Glad to see you're getting back up and running. But I definitely appreciate your PSA. Makes me want to be even more careful out there.
Sorry to hear that Brian. How did you get everything resolved? I mean it's not like RUclips have a dedicated page for people going through something like this.
Dude! So glad your stuff is back up for the most part! These hackers need to get out! Can’t wait for more great content to roll out! Take care and stay safe!
Man you're such a good sport about it. I would have freaked out...Glad you're back at it.
Oh, I did freak out! But you take the punches in life and more forward. Always.
Sucks that happened to you! Cool to see you taking it in stride...though I know it had to be really hard and annoying to deal with. Be a good human!
Thanks for the heads up on the scam. Glad your account(s) have been recovered
Well, you know this was only profitable for the hackers because they hit creators who were VERY POPULAR! So it's a compliment, really :). Glad you're back up my friend.
Thanks for handling this in such a professional and positive manner. I'm sending you positive internet vibrations.
I appreciate that!
So sorry buddy. I hate hackers
Wow! What would be helpful to know is exactly how they did it. More details, please Brian!
I was so confused when I saw Tong with the cryptocurrency thingy
I’m so thankful you are back
Really sucks and scary. Glad you’re back online BT
when they get ur cookies theyre already logged in, thats why you wont get any notifications, because no action was taken
A reminder even with all the security, hackers can still get around it. Brian, what I recommend you do is have a Linux VM where you can view download and view email attachments. Windows 11 has this feature called Windows Sandbox, which is where I view content I am not sure about.
Thant sux! I am sorry to hear that! You mess with Tong you mess with us all!!!!
I was like "I knew it! Brian _IS_ a Elon guy." Obviously, I'm kidding, but it does make me wonder: if guys liek Brian can get hacked, my parents (and I) have no chance.
God! Great you got it back Brian !! Hope you didn’t lose followers, the OGs are still here 😊
This first happened to Linus Tech Tips channel a few month ago too. The malware is stealing your browser's session cookies, so no matter if you have 2FA or not, they can have access to your accounts. The only way to avoid this to happens, will be to log-off every time from all your account, and re-log in each time. But nobody does that though.
I find it weird that Google/Twitter...etc doesn't check the logged IP though. If the IP of the session cookie used is suddenly different than the IP normally used to connect to the account, they should ask for the 2FA again. Simple to implement, but yet nobody does it 🤔
My son downloaded an after affects plugin that was tainted and a hacker basically cloned his computer so 2FA was useless. The system just assumed it was him. His account was monetized (about $2k a month) but youtube never replied to his email or twitter inquiries. It's really sad as my son built up the channel since he was in Elementary school through high school.
Not him falling for the Nigerian prince scam 💀
...C'Mon Man!
Interesting, i thought you got banned from youtube so i was like WTF. Another page loaded up on youtube. Made me more aware. WOW
I knew it Brian. I was looking for some new stuff from you on YT and was redirected to some lousy content. Stay strong 💪
Yo Brian! Love your talking heads since Apple Byte… that’s a Good 🍎
Happened to my channel 2 years ago.. it is really not a pleasant experience!
Dang! Glad you're back. Would you be able to share more about the PDF and/or phishing email and how that ended up leaking your session cookies? Seems like you have a pretty specific understanding of how this went down and I think more info would help others avoid this. For example, was there some known security issue in a browser or in macOS Preview (opening a PDF) that allowed this to occur and are there updates that can help protect ourselves?
Welcome back bro! Stay strong.
Man I am SO glad to see you’re back!!!! I felt sick, you’re done so much work here since your CNET days and the thought of you losing all that was horrible. Just glad you’re back on board. I’ve seen the fake Elon stuff before, it’s not good.
Thanks for sticking with me!
This session cookie hack has become pretty common and I too faced the same issue, also made a video on the same, these should be some solution to the same.
glad you got it back Brian.
Glad you’re back man!
Yeah I saw the exact same thing happen to Chef Jean-Pierre this morning, same crypto stream and everything.
Yeah there was some weird Brian Tong video a supposed live feed, I was like well that's weird.
Glad you're back!
Glad you're back! Just curious, were you using any hardware security keys and still got hacked?
Thanks for making it a teachable moment. That's how they lose.
I wasn’t aware of this. Same like you , a big Indian YT happened
Glad to have you back
That’s insane! Just by clicking on a PDF or URL. WOW. I am afraid to open anything now.
Thanks for sharing Brian!
Could this mean accessing email in a separate program (not a browser) might be more secure?
That’s the chillest reaction I’ve seen on someone who lost all access to his social media services .
It's interesting reading comments like these. It was traumatic at the time...TRUST ME 🙏😭 ...but things end up working themselves out.
Even if it hurts, you can only control what you can control and move forward. A positive spirit can help get you through many things a lot tougher than this.
This has been happening to a lot of people on RUclips lately.
That's why I delete all my emails, nothing but Spam and Phishing emails.
That'a why your channel was off, good thing you are back Tangy Tong
Gotta keep it tangy for you
A whole army of Elon Musk simps failed to take down B-Teezy, we love to see it 😂
Sorry buddy. It sounds like you did everything they say you should.
Hackers? That's a BAD APPLE!
Dude, welcome back
People just got nothing better to do..🤦🏻♂️🤦🏻♂️
Dude thats scary!!!
No worries bud. We (subscribers) are not going anywhere.
I did wonder why your channel was taking us to a Tesla video. Glad your regaining control.
Brian Tong beat the hackers in a PRIZE FIGHT! KaPow!
WAH-PAW!
Sadly many hackers don’t qualify as humans.
I knew something was up when I saw the overdubbed deep fakes with Elon and the QR code. Then I reported it and I'm glad your access is all back, mate!
Welcome back
I think tech influencers should dedicate a seperate computer and contacts for business relations and others for work to prevent these hacks.
Just a word of caution to the hackers responsible; we dont want to see this man's nude online ok. The internet already has enough weird sh1t
Wish we had more truthful content like from Loius Rossman
Maybe you should make a video to help people not get hacked by PDF malware. Did it happen on Widows, Mac? Are you using secure PDF reader or disabling Javascript in the reader? I think the same thing happened to LTT. Be more security aware.
That is horrible! Can’t the hackers use their expertise to do good things?
How the heck non of the security measures worked?
so solution is to delete your season cookies from bowsers each time when you're done?
Did this happen on iPhone or a MacBook ?
Windows pc for sure, he also mentions lots of google services
Chef Jean Pierre who has 2 million subs is going through the same bs right now. His channel has been showing the same stupid livestreams too.
that's wild...
Wao and all of that happened with 2FA activated! What is the recommendation for avoiding this?
Get mail protection and cloud response alerts for your google account
Was it just a simple pdf file from Gmail?
I tweeted literally minutes after that stream started.
Me too, I went everywhere except Patreon which I forogt about the dm function within the first 30 seconds I got hit with a notification it was crazy how it appeared on my phone.
There has to be a way to load up documents from emails into a virtual external machine off site like a cloud document display box which will never offload anything to a local machine. If not don't steal my idea
with OS you where using?