Jump to content

Your Account Might Be In Danger [Important Security Checks]

creative_howl
 Share

Recommended Posts

creative_howl Mentor

creative_howl

Posted
Posted

This is gonna be a long one...

Anyway... so we all know the scammer situation that's going on at the moment right? But that's not what this post is about.

Apparently, they have started hijacking seller accounts to send scam links around. I've seen posts from two level 2 seller accounts being hacked the exact same way within the past 24 hours. I'm gonna link those two posts here for you to see the severity of this:

Post 01
Post 02

TL;DR: Scammers have hacked into a level 2 account, changed the display name to "support" and started sending messages to multiple sellers with their scam links. Fortunately account owner noticed this and changed their password, and sent messages to the people who received the spam messages warning them not to click the link (which was pretty awesome on his part. Kudos to you for doing that). 

Now the fun part is that their accounts have gotten suspended, even when they had nothing to do with this. I'm sure that their accounts will be reinstated by CS after an investigation. But let's try to avoid that kinda fun and make sure the following security checks are completed to make sure that this won't happen to you.



1. Change your password and/or use a strong password:

If your password is "password", it's time to change it to something that's difficult to guess. Eg: Z[axCQ$%y08Ed+p[%CNS 
The example password above contains characters that are upper and lower case / numbers / special characters ($#@ etc.) and is lengthy. Which is what you want. 

 

2. Additional Authenticators:

a. Make sure two factor authentication is activated, and working. You can do this by simply logging out of your account and logging in again.
b. Check and make sure that you have completed phone verification.
c. Make sure that you have a security question in place so that you can login to your account by yourself in case you get locked out of your account in the future.

 

image.png.9fcb6b4829ab279acdb6107e6727b0c6.png

 

3. Connected Devices

Check and verify that the connected devices to your account. Here you can see if any unknown devices are logged into your account. You can use this page to revoke access to any unknown devices if you see any.

 

image.png.abb3a9413bb838e5545c717b829baa2a.png

 

4. Preview links before you click them anywhere on the internet

First of all, make a habit of previewing all links before you click them. Dangerous links can come in any shape or form. If someone is desperate enough, they might even pose as a genuine client, get work done with you, get you to click on a dangerous link, pay, leave a review, and go. You wouldn't even know how your account got hacked. So make sure that you always ALWAYS check whether the link is pointing to before you click it (I have seen a fair amount of spam links being posted on this forum as well). 

This is how you do it: 

 

image.png.7832fe7312173c701bc1fdb55ce2ea78.png

 

In case you didn't understand what happened here, I hovered my mouse pointer on top of the "Forum" link, and the exact destination of that link was shown to me in the bottom left corner of my web browser. Any mainstream web browser should have this feature (I'm using Google Chrome here in case you were wondering).

 

5. Use the Fiverr Mobile App

I'm sure everyone is using the App. But in case you are not, maybe it's time to consider start using it. You can use this to easily monitor your account on the go from time to time to make sure there isn't any weird activity in your account. 

Here are some settings you might wanna get yourself familiar with if you're using this app for the first time:
 

image.png.6c45a128ccab5755232f1f85183a3355.png

 

image.png.09d8eed84b97e42f767b6a57699bb96c.png

 

image.png.50bcb0ed8c4743848f28bb552e03f8f5.png

 

6. IRL

Most people forget this. You need to make sure that you're not exposing any sensitive account information to anyone you might be hanging out with in real life (friends, co-workers, girl friends / boy friends / cats etc.). Social engineering is a key part of most "hacks". 

 

Alright... so I think I covered everything you can do to safeguard yourself while using Fiverr. However, you might still be susceptible to a potential hijack in case your web browser gets hacked while browsing other "totally legit websites". I'm sure most of you are already aware of the things I covered in this post. But I thought I would write about this anyway as not everyone here might not be "internet savvy".

So I would suggest using a dedicated web browser just for Fiverr to keep yourself extra safe.

Final remarks: Avoid clicking on links as much as you can. Try to be as vigilant as you can. If something feels odd, or too good to be true, it probably is.
And most importantly: Please don't get hacked and give these ******** the satisfaction of ruining your work. 

Good luck!

  • Like 103
  • Congrats! 1
  • Up 18
  • Thanks 14
  • Insightful 5
Link to comment
Share on other sites
  • Lena pinned this topic
  • 2 weeks later...
nikitakakade24 Proficient

nikitakakade24

Posted
Posted
On 6/23/2024 at 11:57 AM, creative_howl said:

This is gonna be a long one...

Anyway... so we all know the scammer situation that's going on at the moment right? But that's not what this post is about.

Apparently, they have started hijacking seller accounts to send scam links around. I've seen posts from two level 2 seller accounts being hacked the exact same way within the past 24 hours. I'm gonna link those two posts here for you to see the severity of this:

Post 01
Post 02

TL;DR: Scammers have hacked into a level 2 account, changed the display name to "support" and started sending messages to multiple sellers with their scam links. Fortunately account owner noticed this and changed their password, and sent messages to the people who received the spam messages warning them not to click the link (which was pretty awesome on his part. Kudos to you for doing that). 

Now the fun part is that their accounts have gotten suspended, even when they had nothing to do with this. I'm sure that their accounts will be reinstated by CS after an investigation. But let's try to avoid that kinda fun and make sure the following security checks are completed to make sure that this won't happen to you.



1. Change your password and/or use a strong password:

If your password is "password", it's time to change it to something that's difficult to guess. Eg: Z[axCQ$%y08Ed+p[%CNS 
The example password above contains characters that are upper and lower case / numbers / special characters ($#@ etc.) and is lengthy. Which is what you want. 

 

2. Additional Authenticators:

a. Make sure two factor authentication is activated, and working. You can do this by simply logging out of your account and logging in again.
b. Check and make sure that you have completed phone verification.
c. Make sure that you have a security question in place so that you can login to your account by yourself in case you get locked out of your account in the future.

 

image.png.9fcb6b4829ab279acdb6107e6727b0c6.png

 

3. Connected Devices

Check and verify that the connected devices to your account. Here you can see if any unknown devices are logged into your account. You can use this page to revoke access to any unknown devices if you see any.

 

image.png.abb3a9413bb838e5545c717b829baa2a.png

 

4. Preview links before you click them anywhere on the internet

First of all, make a habit of previewing all links before you click them. Dangerous links can come in any shape or form. If someone is desperate enough, they might even pose as a genuine client, get work done with you, get you to click on a dangerous link, pay, leave a review, and go. You wouldn't even know how your account got hacked. So make sure that you always ALWAYS check whether the link is pointing to before you click it (I have seen a fair amount of spam links being posted on this forum as well). 

This is how you do it: 

 

image.png.7832fe7312173c701bc1fdb55ce2ea78.png

 

In case you didn't understand what happened here, I hovered my mouse pointer on top of the "Forum" link, and the exact destination of that link was shown to me in the bottom left corner of my web browser. Any mainstream web browser should have this feature (I'm using Google Chrome here in case you were wondering).

 

5. Use the Fiverr Mobile App

I'm sure everyone is using the App. But in case you are not, maybe it's time to consider start using it. You can use this to easily monitor your account on the go from time to time to make sure there isn't any weird activity in your account. 

Here are some settings you might wanna get yourself familiar with if you're using this app for the first time:
 

image.png.6c45a128ccab5755232f1f85183a3355.png

 

image.png.09d8eed84b97e42f767b6a57699bb96c.png

 

image.png.50bcb0ed8c4743848f28bb552e03f8f5.png

 

6. IRL

Most people forget this. You need to make sure that you're not exposing any sensitive account information to anyone you might be hanging out with in real life (friends, co-workers, girl friends / boy friends / cats etc.). Social engineering is a key part of most "hacks". 

 

Alright... so I think I covered everything you can do to safeguard yourself while using Fiverr. However, you might still be susceptible to a potential hijack in case your web browser gets hacked while browsing other "totally legit websites". I'm sure most of you are already aware of the things I covered in this post. But I thought I would write about this anyway as not everyone here might not be "internet savvy".

So I would suggest using a dedicated web browser just for Fiverr to keep yourself extra safe.

Final remarks: Avoid clicking on links as much as you can. Try to be as vigilant as you can. If something feels odd, or too good to be true, it probably is.
And most importantly: Please don't get hacked and give these ******** the satisfaction of ruining your work. 

Good luck!

Thank you so much. This was helpful!! After being here after a long time, we often forget to change the password unless we change the device and login to new devices. This was like a reminder to keep track of our account for our own safety. 
 

Thank you 

  • Like 37
Link to comment
Share on other sites
  • 3 weeks later...
lasabro Enthusiast

lasabro

Posted
Posted
On 6/23/2024 at 11:57 AM, creative_howl said:

This is gonna be a long one...

Anyway... so we all know the scammer situation that's going on at the moment right? But that's not what this post is about.

Apparently, they have started hijacking seller accounts to send scam links around. I've seen posts from two level 2 seller accounts being hacked the exact same way within the past 24 hours. I'm gonna link those two posts here for you to see the severity of this:

Post 01
Post 02

TL;DR: Scammers have hacked into a level 2 account, changed the display name to "support" and started sending messages to multiple sellers with their scam links. Fortunately account owner noticed this and changed their password, and sent messages to the people who received the spam messages warning them not to click the link (which was pretty awesome on his part. Kudos to you for doing that). 

Now the fun part is that their accounts have gotten suspended, even when they had nothing to do with this. I'm sure that their accounts will be reinstated by CS after an investigation. But let's try to avoid that kinda fun and make sure the following security checks are completed to make sure that this won't happen to you.



1. Change your password and/or use a strong password:

If your password is "password", it's time to change it to something that's difficult to guess. Eg: Z[axCQ$%y08Ed+p[%CNS 
The example password above contains characters that are upper and lower case / numbers / special characters ($#@ etc.) and is lengthy. Which is what you want. 

 

2. Additional Authenticators:

a. Make sure two factor authentication is activated, and working. You can do this by simply logging out of your account and logging in again.
b. Check and make sure that you have completed phone verification.
c. Make sure that you have a security question in place so that you can login to your account by yourself in case you get locked out of your account in the future.

 

image.png.9fcb6b4829ab279acdb6107e6727b0c6.png

 

3. Connected Devices

Check and verify that the connected devices to your account. Here you can see if any unknown devices are logged into your account. You can use this page to revoke access to any unknown devices if you see any.

 

image.png.abb3a9413bb838e5545c717b829baa2a.png

 

4. Preview links before you click them anywhere on the internet

First of all, make a habit of previewing all links before you click them. Dangerous links can come in any shape or form. If someone is desperate enough, they might even pose as a genuine client, get work done with you, get you to click on a dangerous link, pay, leave a review, and go. You wouldn't even know how your account got hacked. So make sure that you always ALWAYS check whether the link is pointing to before you click it (I have seen a fair amount of spam links being posted on this forum as well). 

This is how you do it: 

 

image.png.7832fe7312173c701bc1fdb55ce2ea78.png

 

In case you didn't understand what happened here, I hovered my mouse pointer on top of the "Forum" link, and the exact destination of that link was shown to me in the bottom left corner of my web browser. Any mainstream web browser should have this feature (I'm using Google Chrome here in case you were wondering).

 

5. Use the Fiverr Mobile App

I'm sure everyone is using the App. But in case you are not, maybe it's time to consider start using it. You can use this to easily monitor your account on the go from time to time to make sure there isn't any weird activity in your account. 

Here are some settings you might wanna get yourself familiar with if you're using this app for the first time:
 

image.png.6c45a128ccab5755232f1f85183a3355.png

 

image.png.09d8eed84b97e42f767b6a57699bb96c.png

 

image.png.50bcb0ed8c4743848f28bb552e03f8f5.png

 

6. IRL

Most people forget this. You need to make sure that you're not exposing any sensitive account information to anyone you might be hanging out with in real life (friends, co-workers, girl friends / boy friends / cats etc.). Social engineering is a key part of most "hacks". 

 

Alright... so I think I covered everything you can do to safeguard yourself while using Fiverr. However, you might still be susceptible to a potential hijack in case your web browser gets hacked while browsing other "totally legit websites". I'm sure most of you are already aware of the things I covered in this post. But I thought I would write about this anyway as not everyone here might not be "internet savvy".

So I would suggest using a dedicated web browser just for Fiverr to keep yourself extra safe.

Final remarks: Avoid clicking on links as much as you can. Try to be as vigilant as you can. If something feels odd, or too good to be true, it probably is.
And most importantly: Please don't get hacked and give these ******** the satisfaction of ruining your work. 

Good luck!

Thank you for sharing valuable insights with the community. Your expertise is greatly appreciated, and your contribution will undoubtedly benefit others seeking guidance in this area. Your professionalism in providing such insightful information is commendable and reflects your commitment to helping others succeed. 👍

  • Like 25
Link to comment
Share on other sites
ayesham270 Rookie

ayesham270

Posted
Posted
On 6/23/2024 at 11:27 AM, creative_howl said:

 

On 6/23/2024 at 11:27 AM, creative_howl said:

Make sure that you have a security question in place so that you can login to your account by yourself in case you get locked out of your account in the future.

I have forgot what was the answer of my security question. What should I do now?

 

  • Like 23
Link to comment
Share on other sites
  • 3 weeks later...
mitanimation Enthusiast

mitanimation

Posted
Posted

Yes, what has happened to everyone recently happened to me and my account was stolen. Even though I have the evidence, it's been 6 days and I haven't received any response. What happened to the old quality of Fiverr customer service?

  • Like 10
  • Insightful 1
Link to comment
Share on other sites
Kesha Grand Master

Kesha

Posted
Posted
On 8/22/2024 at 10:17 AM, mitanimation said:

Yes, what has happened to everyone recently happened to me and my account was stolen. Even though I have the evidence, it's been 6 days and I haven't received any response. What happened to the old quality of Fiverr customer service?

Hi there! 

I see you currently have open tickets with CS. This means they are still reviewing your case.

I understand it may be a frustrating and anxious situation to be in, but please be patient with them as they work to assist you. Since CS handles cases in the order they are received, sending multiple messages can push your case to lower priority each time you send a new message. 

  • Like 12
  • Insightful 1
Link to comment
Share on other sites
developerlikhon Grand Master

developerlikhon

Posted
Posted
On 6/23/2024 at 12:27 PM, creative_howl said:

This is gonna be a long one...

Anyway... so we all know the scammer situation that's going on at the moment right? But that's not what this post is about.

Apparently, they have started hijacking seller accounts to send scam links around. I've seen posts from two level 2 seller accounts being hacked the exact same way within the past 24 hours. I'm gonna link those two posts here for you to see the severity of this:

Post 01
Post 02

TL;DR: Scammers have hacked into a level 2 account, changed the display name to "support" and started sending messages to multiple sellers with their scam links. Fortunately account owner noticed this and changed their password, and sent messages to the people who received the spam messages warning them not to click the link (which was pretty awesome on his part. Kudos to you for doing that). 

Now the fun part is that their accounts have gotten suspended, even when they had nothing to do with this. I'm sure that their accounts will be reinstated by CS after an investigation. But let's try to avoid that kinda fun and make sure the following security checks are completed to make sure that this won't happen to you.



1. Change your password and/or use a strong password:

If your password is "password", it's time to change it to something that's difficult to guess. Eg: Z[axCQ$%y08Ed+p[%CNS 
The example password above contains characters that are upper and lower case / numbers / special characters ($#@ etc.) and is lengthy. Which is what you want. 

 

2. Additional Authenticators:

a. Make sure two factor authentication is activated, and working. You can do this by simply logging out of your account and logging in again.
b. Check and make sure that you have completed phone verification.
c. Make sure that you have a security question in place so that you can login to your account by yourself in case you get locked out of your account in the future.

 

image.png.9fcb6b4829ab279acdb6107e6727b0c6.png

 

3. Connected Devices

Check and verify that the connected devices to your account. Here you can see if any unknown devices are logged into your account. You can use this page to revoke access to any unknown devices if you see any.

 

image.png.abb3a9413bb838e5545c717b829baa2a.png

 

4. Preview links before you click them anywhere on the internet

First of all, make a habit of previewing all links before you click them. Dangerous links can come in any shape or form. If someone is desperate enough, they might even pose as a genuine client, get work done with you, get you to click on a dangerous link, pay, leave a review, and go. You wouldn't even know how your account got hacked. So make sure that you always ALWAYS check whether the link is pointing to before you click it (I have seen a fair amount of spam links being posted on this forum as well). 

This is how you do it: 

 

image.png.7832fe7312173c701bc1fdb55ce2ea78.png

 

In case you didn't understand what happened here, I hovered my mouse pointer on top of the "Forum" link, and the exact destination of that link was shown to me in the bottom left corner of my web browser. Any mainstream web browser should have this feature (I'm using Google Chrome here in case you were wondering).

 

5. Use the Fiverr Mobile App

I'm sure everyone is using the App. But in case you are not, maybe it's time to consider start using it. You can use this to easily monitor your account on the go from time to time to make sure there isn't any weird activity in your account. 

Here are some settings you might wanna get yourself familiar with if you're using this app for the first time:
 

image.png.6c45a128ccab5755232f1f85183a3355.png

 

image.png.09d8eed84b97e42f767b6a57699bb96c.png

 

image.png.50bcb0ed8c4743848f28bb552e03f8f5.png

 

6. IRL

Most people forget this. You need to make sure that you're not exposing any sensitive account information to anyone you might be hanging out with in real life (friends, co-workers, girl friends / boy friends / cats etc.). Social engineering is a key part of most "hacks". 

 

Alright... so I think I covered everything you can do to safeguard yourself while using Fiverr. However, you might still be susceptible to a potential hijack in case your web browser gets hacked while browsing other "totally legit websites". I'm sure most of you are already aware of the things I covered in this post. But I thought I would write about this anyway as not everyone here might not be "internet savvy".

So I would suggest using a dedicated web browser just for Fiverr to keep yourself extra safe.

Final remarks: Avoid clicking on links as much as you can. Try to be as vigilant as you can. If something feels odd, or too good to be true, it probably is.
And most importantly: Please don't get hacked and give these ******** the satisfaction of ruining your work. 

Good luck!

Thanks for your valuable information, but previewing website links also has a little bit of risk, so it is better to avoid random link types. For example, I attached two screenshots in my attachment, but if you feel it is very important to check the client-provided website, I highly suggest opening the link to a completely different browser in incongnito mode to prevent website cookie hijacking. I also recommend using good anti-virus software that comes with browser extensions that help to block malicious random links.

Screenshot 2024-08-24 at 10.45.11 AM.png

Screenshot 2024-08-24 at 10.45.32 AM.png

  • Like 9
Link to comment
Share on other sites
areebafatiarts6 Newbie

areebafatiarts6

Posted
Posted

Hello I got a message from a weird user. I didn't open for a week but now i just opened.... it is a PDF file. I am like rookie here it is only been around a week. I DID CLICK ON IT IN PDF file it took to me to weird blue screen. Should verified or not?

THANK YOU.

 

 

Screenshot 2024-08-31 225726.png

  • Like 5
Link to comment
Share on other sites
rabiulr Experienced

rabiulr

Posted
Posted (edited)

Yes, sometimes it happend. like for the last month maybe was try to fell me in danger . And all the chats that are banned on fiverr were talking. He was banned from fiverr for trying to endanger me.

Edited by rabiulr
  • Like 6
Link to comment
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing
×
×
  • Create New...