Hacked Multiple Times
OMG. I have had my iPhone hacked at least 5 times that i know of. My Apple Id has been compromised I don't know how many times. Facebook has been hacked 3 times 2 of which I caught them in my account and kicked them out. I haven't had to many problems with my brand new MCP running all the latest OS. I've just taked to Apple for like the 20th time and they insist it's impossible for this to happen. Yet it is. I just got off of the phone with my ISP provider for the last 3 hours. And had the same response. It's impossible. He finally agreed after trying to factory reset my modem/router several different ways that they have hacked my modem/router firmware. I trust 1 password and have reset master passoword several times. So my question is am I safe? Is there a way to tell if I'm compromised? I have every single piece of information of my life in there. I have not noticed and unusual bank activity although i have requested a new Visa Card and Debit Card. I have also deleted all my 1 password info on iCloud. Is there anything else I can do? Thanks, J
1Password Version: 5.3.2 / IOS Version 5 pro
Extension Version: 4.3.1 /
OS Version: 10.10.3 / IOS 8.3
Sync Type: WIFI
Comments
-
wow scary
0 -
@jasonkeith: The first thing I would do is add two-step verification to your Apple ID. That ensures that even if someone gets (or already has) your password for the Apple ID you use for iCloud, iTunes, etc. they will need the additional one-time code to make any changes to your account. And that will allow you to change your password to something more secure without them being able to change it again after that (since they won't have access to the codes for two-step verification). If you're using iCloud for your email as well, even better, as two-step will afford you the same protection there!
I'm not sure exactly what has convinced you that you've been 'hacked', since it sounds like your finances haven't been affected (and that would be the ultimate goal of someone malicious I'd think: financial gain), but when it comes to security, nothing is impossible -- though many things are improbable or infeasible on a human timescale. The best security in the cases you've described is a long, strong, unique password that no one will be able to guess. Start with iCloud, especially if this is tied to your email, and that will be a good start at preventing someone from being able to reset passwords and such, which will help in the case of your other accounts as well. Then you can change your other passwords to prevent someone from getting into your accounts with the password you're using now.
Finally, the chances of someone 'hacking' your iPhone in particular are almost zero (depending on what you mean by 'hacking' of course). iOS apps and services are sandboxed -- isolated from each other and the system -- so that a malicious app cannot infect or otherwise compromise others. And someone would have to have physical access to an iOS device to jailbreak it in order to run apps not vetted by Apple or make other modifications to the system itself which could be used to compromise security. I'm not even sure if a jailbreak exists for the newest version of iOS.
In regard to 1Password specifically, regardless of platform your data is encrypted using your Master Password and parts of it are only decrypted on demand, when you open an item (for instance to view, use, or edit some login information, etc.) For this reason, a strong Master Password is your best defense, no matter where you keep your data -- in the cloud, or only on your device.
Ultimately, if someone malicious has access to your devices, all bets are off as far as system security. But you're 1Password vault is decrypted separately from this, so the best they could hope for would be to capture both your data and your Master Password, since both are needed to access your vault. I hope this helps! :)
0 -
I wonder if it's an iCloud vulnerability. It's happened before. Just a guess.
0 -
@wkleem: iCloud wasn't vulnerable; their support staff were in some cases though, and fell prey to some social engineering (also, people using easy-to-guess passwords).
Apple has since become much more strict about verification and resets on their end, and two-step was also implemented. Very good to have to prevent anyone unauthorized from making changes, even with your password!
0 -
I'm not well versed in all this vulns stuff.
0 -
Believe me, I wish none of us had any need to be. :(
0 -
My fiancé is going crazy because she thinks i'm over reacting and being compulsive about shutting people out.
0 -
yes I have 2 step varification and have been using 1 paaword for years and have been generating passwords as long and as complicated as possible. Thanks for getting back to me.
0 -
Thanks, @jasonkeith. Was two step authentication enabled prior to this occurring, or have to enabled it in response?
0 -
My fiancé is going crazy because she thinks i'm over reacting and being compulsive about shutting people out.
@jasonkeith: Just to clarify, if it's your accounts and data on the line, it really is up to you what measures you take and who you allow to access them. At that point it becomes more of a social issue -- especially between you and your fiancée.
Sometimes I drive my wife a little crazy with security measures as well. Ultimately anything contentious can be hard to navigate in these relationships, so you have my sympathy!
I hope that you found some of the information I provided regarding various security implications to be helpful. Without knowing more of the specifics I can only really respond in broad terms, but I respect that you might not wish to go into detail.
0
