The Rolex Forums   The Rolex Watch

ROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEX


Go Back   Rolex Forums - Rolex Watch Forum > Classifieds > WatchOut!!!

Reply
 
Thread Tools Display Modes
Old 18 June 2020, 05:43 PM   #1
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
New Member Here!

Hi guys!

I used to be Darryll aka gaoxing84 here but unfortunately the account was hacked and banned.

I will be here using this account with a VERY STRONG PW and 2FA authentication so those hackers or scammers will never get to me and the good members here.

so here's to a new era for my account.

cheers!
trackingtime is offline   Reply With Quote
Old 18 June 2020, 05:55 PM   #2
Andad
2024 Pledge Member
 
Andad's Avatar
 
Join Date: Nov 2006
Real Name: Eddie
Location: Australia
Watch: A few.
Posts: 36,692
How did the scammer get to you.

I thought that even with a single password I would be safe?

How did a spammer get your password?
__________________
E

Andad is offline   Reply With Quote
Old 18 June 2020, 06:13 PM   #3
sgwatchguy
"TRF" Member
 
sgwatchguy's Avatar
 
Join Date: Jan 2020
Real Name: KP Jimmy
Location: Singapore
Watch: R/AP/FPJ/Hermès/et
Posts: 6,597
Welcome, back
__________________
sgwatchguy is offline   Reply With Quote
Old 18 June 2020, 06:20 PM   #4
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
Quote:
Originally Posted by Andad View Post
How did the scammer get to you.

I thought that even with a single password I would be safe?

How did a spammer get your password?
that i wouldn't know.

i got hacked the first time (I 100% did not click on any TRF emails, even for pm, i will delete the email and go read the PM on the forum immediately)
emailed the admins, paid a verification fee (which i don't mind) and changed to a pretty strong password.

within 24 hours, i got hacked again. some friends of mine from here went to troll the scammer. the scammer even used my old photos of watches for sale (which i have already deleted from the image hosting site sometime ago). he probably saved it and planned this.

i am pretty sure he got access into my email associated with gaoxing84. so i changed it as well

so i decided to forgo that account and use a password manager for encrypted password and 2FA for both my email account and this new account.

bloody scammers
trackingtime is offline   Reply With Quote
Old 18 June 2020, 06:32 PM   #5
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
hey thanks man!
trackingtime is offline   Reply With Quote
Old 18 June 2020, 06:47 PM   #6
Andad
2024 Pledge Member
 
Andad's Avatar
 
Join Date: Nov 2006
Real Name: Eddie
Location: Australia
Watch: A few.
Posts: 36,692
Wow!!
__________________
E

Andad is offline   Reply With Quote
Old 18 June 2020, 06:53 PM   #7
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
so stay safe out there.

activate 2FA!
trackingtime is offline   Reply With Quote
Old 18 June 2020, 10:16 PM   #8
77T
2024 Pledge Member
 
77T's Avatar
 
Join Date: Dec 2010
Real Name: PaulG
Location: Georgia
Posts: 40,569
For the uninitiated, there are several ways to have your TRF account compromised. The most common way is an email scam called phishing.

But gaoxing84 said he didn’t click on any links - so the #2 is likely a keylogger (malware that watches for credit card numbers and user ID/passwords).

Either way, gaoxing84 did enable 2-Factor Authentication to protect his account.

You can do that for your own account, too. Here is the method for TRF: https://www.rolexforums.com/showthre...2#post10685992
__________________


Does anyone really know what time it is?
77T is offline   Reply With Quote
Old 18 June 2020, 10:31 PM   #9
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
probably and the scammer planned his way well. he already have photos of my watches saved up and sent out to people.
some of the photos are few months back and usually once i sold the watch, i delete them on the image hosting site.
received these screenshot from a good member here and a friend of mine

stay safe people.

Gotta appreciate the mods and admin for getting the 2FA done.
thank you!
will share the screenshot when i hit 10 post count
trackingtime is offline   Reply With Quote
Old 18 June 2020, 10:34 PM   #10
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
here are the screenshots











trackingtime is offline   Reply With Quote
Old 18 June 2020, 10:44 PM   #11
77T
2024 Pledge Member
 
77T's Avatar
 
Join Date: Dec 2010
Real Name: PaulG
Location: Georgia
Posts: 40,569
Quote:
Originally Posted by trackingtime View Post
probably and the scammer planned his way well. he already have photos of my watches saved up and sent out to people.

The scammer didn’t have to save the photos from your hosting site. Just sharing in spirit of safety.

If my instinct is correct, the scammer has access to your hard drive. Do you keep your listing photo’s on it?

Also, if s/he compromised your computer, the malware is still working now. There are many websites that the scammer may have gained access.


Sent from my iPhone using Tapatalk Pro
__________________


Does anyone really know what time it is?
77T is offline   Reply With Quote
Old 18 June 2020, 10:44 PM   #12
interestedwatcher
2024 Pledge Member
 
interestedwatcher's Avatar
 
Join Date: May 2019
Location: Perth
Posts: 970
That's actually a fairly sophisticated scam.
interestedwatcher is offline   Reply With Quote
Old 18 June 2020, 10:50 PM   #13
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
Quote:
Originally Posted by 77T View Post
The scammer didn’t have to save the photos from your hosting site. Just sharing in spirit of safety.

If my instinct is correct, the scammer has access to your hard drive. Do you keep your listing photo’s on it?

Also, if s/he compromised your computer, the malware is still working now. There are many websites that the scammer may have gained access.


Sent from my iPhone using Tapatalk Pro
I don't think he has access to my hard drive for sure. because these isn't saved in my computer
it's in my phone and i never ever use icloud at all. don't trust it.

so it's physically in my phone flash storage. unless he can hack all the way from US to Asia, connecting thru the big web.

he probably saved it before hand.

i am using a mac and i keep my mac pretty clean from anything. no extra nonsense. i don't click into stupid emails that i don't recognise.

now with my password manager + 2FA + I use 2FA for my email associated with this account, i should be fine.

it's crazy how much effort the scammer did just to scam.
trackingtime is offline   Reply With Quote
Old 18 June 2020, 10:52 PM   #14
77T
2024 Pledge Member
 
77T's Avatar
 
Join Date: Dec 2010
Real Name: PaulG
Location: Georgia
Posts: 40,569
Gaoxing84 is Banned and This is the new me

Malware is a fairly simple insertion. Any teenager with bitcoin can buy the kit on the dark web.

The compromise can be done remotely even on a mobile phone.

Sent from my iPhone using Tapatalk Pro
__________________


Does anyone really know what time it is?
77T is offline   Reply With Quote
Old 18 June 2020, 11:15 PM   #15
Old Expat Beast
TRF Moderator & 2024 Patron
 
Old Expat Beast's Avatar
 
Join Date: Jul 2013
Real Name: Adam
Location: Hong Kong
Watch: SEIKO
Posts: 28,262
If this happens to you again, I think that's probably the end of your trading presence on TRF. Just FYI.
__________________
_______________________
Old Expat Beast is offline   Reply With Quote
Old 18 June 2020, 11:35 PM   #16
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
Quote:
Originally Posted by Old Expat Beast View Post
If this happens to you again, I think that's probably the end of your trading presence on TRF. Just FYI.
hopefully not, i do more buying then selling here anyway.

it's weird that i am targeted.
trackingtime is offline   Reply With Quote
Old 18 June 2020, 11:36 PM   #17
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
Quote:
Originally Posted by 77T View Post
Malware is a fairly simple insertion. Any teenager with bitcoin can buy the kit on the dark web.

The compromise can be done remotely even on a mobile phone.

Sent from my iPhone using Tapatalk Pro
probably, so i guess with the improvement on the forum with 2FA, it should deter scammers from getting into accounts.
trackingtime is offline   Reply With Quote
Old 18 June 2020, 11:47 PM   #18
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
to keep thing safe, i will be adding my new username and contact number as a watermark on all photos that i post for sale.

things i have done to keep my account protected

1) Strong PW with Encryption (both forum account and email account associated)
2) 2FA with the forum and google authenticator ((both forum account and email account associated)
3) Watermark on photos with username and contact number

hope this helps
trackingtime is offline   Reply With Quote
Old 18 June 2020, 11:48 PM   #19
Bearxj86
"TRF" Member
 
Bearxj86's Avatar
 
Join Date: Jun 2017
Location: Los Angeles
Watch: 3970
Posts: 3,793
Quote:
Originally Posted by trackingtime View Post
probably, so i guess with the improvement on the forum with 2FA, it should deter scammers from getting into accounts.
I had something similar happen within a 24 hour period. I am taking precautions (similar to what is suggested here). But I will keep mum since said hacker is probably on these forums.

It is sophisticated and I do not think it is a single hacker, more likely a group.
Bearxj86 is offline   Reply With Quote
Old 19 June 2020, 12:00 AM   #20
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
as a added precaution, i scanned my macbook pro
here are the results

trackingtime is offline   Reply With Quote
Old 19 June 2020, 12:01 AM   #21
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
Quote:
Originally Posted by bearxj86 View Post
I had something similar happen within a 24 hour period. I am taking precautions (similar to what is suggested here). But I will keep mum since said hacker is probably on these forums.

It is sophisticated and I do not think it is a single hacker, more likely a group.
i didn't had time to activate the 2FA because of time difference that's why i got hack twice.

damn it
trackingtime is offline   Reply With Quote
Old 19 June 2020, 12:15 AM   #22
Knappo 1307
2024 Pledge Member
 
Knappo 1307's Avatar
 
Join Date: Sep 2011
Real Name: Jason
Location: USA
Watch: Sea Dweller
Posts: 8,556
What's 2FA?
Knappo 1307 is offline   Reply With Quote
Old 19 June 2020, 12:17 AM   #23
Bearxj86
"TRF" Member
 
Bearxj86's Avatar
 
Join Date: Jun 2017
Location: Los Angeles
Watch: 3970
Posts: 3,793
Quote:
Originally Posted by Knappo 1307 View Post
What's 2FA?
2 Factor authentication - it links it to your cell phone so that if your account is signed in from an unknown location it will require a 2nd code to sign in.

TRF has kindly offered it as an optional service. See below for Steve's post:

https://www.rolexforums.com/showthread.php?t=747721
Bearxj86 is offline   Reply With Quote
Old 19 June 2020, 12:23 AM   #24
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
i think 2FA should be implemented on all Pledged Members since they're given the opportunity to sell or trade watches here.

just a suggestion
trackingtime is offline   Reply With Quote
Old 19 June 2020, 12:25 AM   #25
Knappo 1307
2024 Pledge Member
 
Knappo 1307's Avatar
 
Join Date: Sep 2011
Real Name: Jason
Location: USA
Watch: Sea Dweller
Posts: 8,556
Quote:
Originally Posted by bearxj86 View Post
2 Factor authentication - it links it to your cell phone so that if your account is signed in from an unknown location it will require a 2nd code to sign in.

TRF has kindly offered it as an optional service. See below for Steve's post:

https://www.rolexforums.com/showthread.php?t=747721
Thank you.
Knappo 1307 is offline   Reply With Quote
Old 19 June 2020, 01:13 AM   #26
77T
2024 Pledge Member
 
77T's Avatar
 
Join Date: Dec 2010
Real Name: PaulG
Location: Georgia
Posts: 40,569
Quote:
Originally Posted by trackingtime View Post
i think 2FA should be implemented on all Pledged Members since they're given the opportunity to sell or trade watches here.

just a suggestion


Steve has decided that won’t be a requirement. But it is a good idea for everyone to secure with 2FA now.

I am a big proponent of it as a way to protect.


Sent from my iPhone using Tapatalk Pro
__________________


Does anyone really know what time it is?
77T is offline   Reply With Quote
Old 19 June 2020, 01:29 AM   #27
77T
2024 Pledge Member
 
77T's Avatar
 
Join Date: Dec 2010
Real Name: PaulG
Location: Georgia
Posts: 40,569
Quote:
Originally Posted by trackingtime View Post
as a added precaution, i scanned my macbook pro
here are the results


The malware problems are much like Covid-19 - nobody knows they are infected until a full-blown takeover occurs. So on one day your devices seem clear and the next day things are terrible.

The 2FA will help TRF members in the long run when most have adopted it.

But most new malware has a way to thwart detection like a simple Mac scan.

AV software can miss threats because it is based on well-known virus signatures. However, the security industry sees up to 1 million new malware variants each day.

Cybercriminals aren't making millions of new packages. There are probably ten thousand truly unique malware families. But malware authors have developed hundreds of techniques to make their malware look "new again" to evade security controls.


Sent from my iPhone using Tapatalk Pro
__________________


Does anyone really know what time it is?
77T is offline   Reply With Quote
Old 19 June 2020, 01:33 AM   #28
trackingtime
2024 Pledge Member
 
trackingtime's Avatar
 
Join Date: Jun 2020
Location: Asia
Watch: Audemars Piguet RO
Posts: 2,327
OK. Got it.
I am protected by 2FA now

All should be good.
trackingtime is offline   Reply With Quote
Old 19 June 2020, 08:19 AM   #29
Atone
"TRF" Member
 
Atone's Avatar
 
Join Date: Apr 2015
Real Name: Jesse
Location: Los Angeles
Watch: TinTin!
Posts: 2,704
that was me trolling him, LOL. he shut that phone number down, i just tried to call it.
Atone is offline   Reply With Quote
Old 19 June 2020, 08:19 AM   #30
Atone
"TRF" Member
 
Atone's Avatar
 
Join Date: Apr 2015
Real Name: Jesse
Location: Los Angeles
Watch: TinTin!
Posts: 2,704
sorry this happened Darryll, i always appreciate the ease of our transactions and hope to deal with you more in the future.
Atone is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Takuya Watches

Bobs Watches

Asset Appeal

My Watch LLC

OCWatches

DavidSW Watches

Coronet


*Banners Of The Month*
This space is provided to horological resources.





Copyright ©2004-2024, The Rolex Forums. All Rights Reserved.

ROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEXROLEX

Rolex is a registered trademark of ROLEX USA. The Rolex Forums is not affiliated with ROLEX USA in any way.