A Discord User Hacked into a Company!

  Рет қаралды 213,901

No Text To Speech

No Text To Speech

Күн бұрын

Пікірлер: 481
@vinechetti
@vinechetti Жыл бұрын
Whenever you hear from a company that they've been a victim to a 'highly sophisticated' attack, it usually means that some dumb employee fell for a simple social engineering trick.
@batorerdyniev9805
@batorerdyniev9805 Жыл бұрын
Very true
@yeawassah
@yeawassah Жыл бұрын
W statement
@victoralexandervinkenes9193
@victoralexandervinkenes9193 Жыл бұрын
Or an employee could deliberately download something that is obviously a virus to take down the company for... various reasons COUGH COUGH scamming people COUGH COUGH.
@UnitedYetDivided
@UnitedYetDivided Жыл бұрын
@@victoralexandervinkenes9193insider attacks are surprisingly common
@techwhipped
@techwhipped Жыл бұрын
Yeah the employee fell for the most known discord malware by accepting a file from a friend of there that was hacked.
@dogeimpala
@dogeimpala Жыл бұрын
I'm shocked shadow didn't implode much sooner. That was by far one of the dumbest breaches imaginable. A 12 year old could of compromised that company.
@kacperkonieczny7333
@kacperkonieczny7333 Жыл бұрын
One of the most important things I learnt on the internet that the common person is not even half as intelligent as you think they are
@cesj1
@cesj1 Жыл бұрын
You're way too optimistic. Also "could of"?? Contractions are not hard.
@mcburn_
@mcburn_ Жыл бұрын
@@cesj1 It's also not that hard to avoid correcting other people online, where formality isn't as commonplace or required. Yet, we have plenty of people doing that same exact thing, so I guess it's an urge just to point them out? xD
@cesj1
@cesj1 Жыл бұрын
@@mcburn_ You're acting as if that's the only thing I said. Simple contractions truly aren't hard. Also footnote: I do whatever I want to.
@jerejere-qv7xk
@jerejere-qv7xk Жыл бұрын
No, a 12 years wouldn't have been able to hack a steam developper account and then use that to hack shadow. The game was not sent as a .exe on discord, it was a steam link to a compromised game. It's just as much steam fault here for putting virus on their plateform.
@krizcold
@krizcold Жыл бұрын
yea, the reality is, a surprisingly high amount of companies have very poor security, you'll be surprised how many companies genuinely use "123" type of passwords. But the fact that this was a Cloud virtual machine related company and not a regular restaurant or something it's outrageous
@kevinwebster7868
@kevinwebster7868 Жыл бұрын
No. Not really.
@Silver0Crow
@Silver0Crow Жыл бұрын
u mean `1qaz!QSX`?
@thedarkdragon1437
@thedarkdragon1437 Жыл бұрын
atleast not 0000 type of passwords
@krizcold
@krizcold Жыл бұрын
@@kevinwebster7868 At least in my experience, a lot of small businesses have old people on top that don't know or care about security (some young people not excluded), "123" type of password was more of a hyperbole. Maybe more like "Very poor security practices" But yea, I've actually seen "myCompany123" more than once
@maiyannah
@maiyannah Жыл бұрын
Reminder that Sony was storing passwords in plaintext. Not even weak hashed.
@jd-raymaker
@jd-raymaker Жыл бұрын
Incredible! Imagine running a business providing virtual machines in the cloud, YET an employee decided to run a random EXE on their own production machine...
@jerejere-qv7xk
@jerejere-qv7xk Жыл бұрын
It wasn't a .exe sent on discord but a link to a compromised steam game. Doesn't excuse bad security tho
@jd-raymaker
@jd-raymaker Жыл бұрын
@@jerejere-qv7xk still an executable binary.
@frelift
@frelift Жыл бұрын
@@jerejere-qv7xk source?
@carlissou
@carlissou Жыл бұрын
Bruh you realise lowest employees have usually 0 trainings in companies they're only train to answer customers It's the issue of companies, they think only IT people should be trained on this and non-IT people don't see the point in receiving those trainings The problem is that any smart guy will take his shot on the most careless employees that will guarantee his chances to succeed It's like the rubber ducky hack, it all relies on the guy who will pick it up and be curious enough to see what's inside without precaution Look up to Ulcan, he's a crazy french hacker that mostly succeeded through social engineering, he even freed random people from jail just by calling 2 cops who he knew weren't on the same floor and still had to interact with each other. He just learnt the day before how cops are used to talk together.
@starsnipe-yp5hx
@starsnipe-yp5hx Жыл бұрын
​@@jerejere-qv7xkthats even worse
@gabbieblue
@gabbieblue Жыл бұрын
as someone who works in IT, youre right, we do in fact assume that everyone is an idiot and people _still_ manage to do worse than i could ever have thought of also, love the privacy and security tips!
@oxymoreproducer
@oxymoreproducer Жыл бұрын
As soon as i read "social engineering" i immediately knew what happened. A friend recently fell for it lol
@jack-the-threader
@jack-the-threader Жыл бұрын
You'd just think Shadow the Hedgehog would have a stronger sense of internet safety. A shame, really
@Bloomkyaaa
@Bloomkyaaa Жыл бұрын
Dude... Shadow is an old man lol.
@Gemdation
@Gemdation Жыл бұрын
I bet Sonic hacked it
@MustaDev
@MustaDev Жыл бұрын
We live and learn, that's what matters.
@gamerperson_epik
@gamerperson_epik Жыл бұрын
yea such a shame
@JRPGLOVER
@JRPGLOVER Жыл бұрын
He should've used 70 alternative accounts, like Eggman.
@Toei-Rei
@Toei-Rei Жыл бұрын
I own a domain and I run a ton of email addresses - basically giving each service their unique one. And to be honest, it's shocking to see how many services are sharing data - willingly or unwillingly.
@sippingthe
@sippingthe Жыл бұрын
catch all?
@Toei-Rei
@Toei-Rei Жыл бұрын
no, as a lot of scammers do typos or invalid addresses to catch that as well.
@erikkonstas
@erikkonstas Жыл бұрын
Why does it sound like you're snooping...?
@Toei-Rei
@Toei-Rei Жыл бұрын
@@erikkonstas not sure what you're trying to say.
@erikkonstas
@erikkonstas Жыл бұрын
@@Toei-Rei How do you know what your customers do with their emails?
@BlessedSeal
@BlessedSeal Жыл бұрын
I wish they were more active with helping compromised accounts, poor people waiting weeks for a reponse
@ewenlau727
@ewenlau727 Жыл бұрын
I used to have shadow, and I stopped because not only is the product garbage (6 years old hardware), the support is beyond imaginable, like they take 5 days to send a mail saying "We'll get back to you". Never subscribe to it.
@maiyannah
@maiyannah Жыл бұрын
I would compare the security of these companies to swiss cheese, but that's insulting perfectly good cheese.
@kacperkonieczny7333
@kacperkonieczny7333 Жыл бұрын
Those defenses aren't even paper width
@Jenner_IIC
@Jenner_IIC Жыл бұрын
A fun fact is that in aviation and increasingly safety overall a "swiss cheese" model is used
@erikkonstas
@erikkonstas Жыл бұрын
​@@kacperkonieczny7333They're probably very strong, it's the, uh, PEBKACs that ruin everything...
@pchris
@pchris Жыл бұрын
Remember: don't shame individuals for falling for scams. It's ok to make fun of a large company for not having good IT but the practice of shaming idividuals makes people not want to talk about this kind of thing out of fear of being shamed and so we A.) don't get to learn as much from other people's mistakes because they won't want to share and B.) people won't ask questions they think are "stupid" and will try harder to just figure things out themself which is more likely to get them scammed. We need openness and that can't happen if we're shaming people for things that are only obvious in retrospect or with existing knowledge not everyone has.
@libalance
@libalance Жыл бұрын
The 2021 bankruptcy story is well-known: They charged too cheap for the service at that time, but the processing load exceeded the benefits. They almost got ruined. They have been acquired after this bad move. For the rest, it's exactly why I agreed with the tech company where I worked where they were **decent** protection measures. Not good, only decent, because I don't think this is at all common. The regular users only saw, "Our service is so bad. We can't do anything easily!" In a purely non-tech company, it isn't even possible to explain to someone why giving them my session password is a bad idea. "I'm not going to steal your account, you know?" That was a very competent colleague of mine, (I'm not being ironic, her job was different) looking at me like I was being stupid. Computers and good practices are something people view as something absolutely unimportant... "Until they get burned." To quote a famous social engineering book.
@HongKongZ
@HongKongZ Жыл бұрын
Bruh they literally straight download the malware, the only trickery was renaming a file and making a crappy website. I had no idea about this, keep up the great work!
@extrominus5678
@extrominus5678 Жыл бұрын
Love your content man, keep the hard work up!
@Wicked_Knight
@Wicked_Knight Жыл бұрын
I've encountered more adults, generally boomer and older, that will trustingly download and run programs that lead to them infecting their PCs.
@Marxally
@Marxally Жыл бұрын
I wrote a news post regarding this incident and I had to stop for 5 minutes because I couldn't stop laughing at the "sophisticated method". 😂
@Silver0Crow
@Silver0Crow Жыл бұрын
Holy frick, how gullible you have to be to have cloud-based company and not having InfoSec dept. Is this Shadow some fresh startup or something?
@agentcripper
@agentcripper Жыл бұрын
I don’t think they are a new company considering they have such a large userbase
@erikkonstas
@erikkonstas Жыл бұрын
That department can't do much when the evil is manually invited inside...
@7heMech
@7heMech Жыл бұрын
I'm surprised so many companies don't implement the zero trust model.
@kmemz
@kmemz Жыл бұрын
Well then, I guess I'm glad I only ever put one of my throwaway emails into Shadow and no real info.
@GaIaxyxvr
@GaIaxyxvr Жыл бұрын
its like discord is in a land field, and just keeps stepping on mines.
@kray9927
@kray9927 Жыл бұрын
no joke, my pc broke a few days ago and i was about to go buy a cloud computer from SHADOW. its safe now, but the coincidence is amazing lol. (didnt see the full video yet only the first minute). and also, they mentioned steam in the video, a few days ago a situation occured on steam where people managed to bypass steams antivirus and upload games with malware onto steam. i think they might be linked? i dunno me stupid
@EnBunk
@EnBunk Жыл бұрын
A naked man fears no pickpocket.
@Turtle69696
@Turtle69696 Жыл бұрын
that's why I don't fear pickpockets at the grocery store
@pepsonpepson988
@pepsonpepson988 Жыл бұрын
A collage student is like naked man
@2006HondaCivicD
@2006HondaCivicD Жыл бұрын
Pickpocket is the least of his worries when m o l e s t e r s exist.
@subanark
@subanark Жыл бұрын
Where I work, we are allowed to download and run anything that isn't forbidden by IT. We do however need to keep our personal stuff on a separate account from our work stuff if using a personal computer. For accessing customer data we have a secure laptop that restricts what programs we can run and what websites we can visit.
@DarkGob
@DarkGob Жыл бұрын
Wow, you're allowed to do anything that isn't not allowed?
@subanark
@subanark Жыл бұрын
Yea, we are told what we can't do, not what we can.@@DarkGob
@Laurmachi
@Laurmachi Жыл бұрын
Dang, I fell for this like a few weeks ago. Secured everything except for my discord account at this point, so don't worry about that. I'm an idiot that sits at their computer all day, these are supposed to be professional workers.
@hooting-ton5215
@hooting-ton5215 Жыл бұрын
If Shadow is a french company then the GDPA is going to slap them hard for this kind of breach
@yayaguest666fire
@yayaguest666fire Жыл бұрын
le truc le plus vrai du jour
@redstone0234
@redstone0234 Жыл бұрын
Thé GDPR Is a Law Is thé CNIL that will slap their ass
@Bashiroo
@Bashiroo Жыл бұрын
No. GDPR isn't going to do anything since they've told their customers very *very* fast about the data breaches and gave an explaination (although quite blurry) of how the breach happened. A lot company will have their customer's data breached at some point or another. And the CNIL doesn't beat companies' asses just because they got hacked, even if it was as stupid as that. Source: I worked with GDPR and the CNIL for a bit of time.
@maiyannah
@maiyannah Жыл бұрын
@@BashirooThen what you're telling me is that these organizations meant to enforce the laws are not actually completing the purpose the law was designed to achieve.
@Liggliluff
@Liggliluff Жыл бұрын
​@@maiyannahGDPR allows you to store customers' data, but customers have the right to have their data deleted.
@ShrimpsUseful
@ShrimpsUseful Жыл бұрын
We love NTTS content!
@adamtheman17
@adamtheman17 Жыл бұрын
I' an IT Tech and i do notice a lot of companies don't have things locked on the computer from letting users installing things onto the pc
@lil-hannah
@lil-hannah Жыл бұрын
This happend to me, (Also in September), like got a message from a friend for testing a game It is a pain to communicate with the Discord Support
@Liggliluff
@Liggliluff Жыл бұрын
Jokes on you, I don't have a credit score
@bnanik
@bnanik Жыл бұрын
imagine getting hacked by a discord user
@agentcripper
@agentcripper Жыл бұрын
Nah fr discord users are all skids
@SwordfighterRed
@SwordfighterRed Жыл бұрын
cringe
@SunnyXck
@SunnyXck Жыл бұрын
​@@SwordfighterRedfor myself
@_Cardio
@_Cardio Жыл бұрын
Bro I was waiting for you to say "but this could have been prevented by today's sponsor guardio"
@RedEndermanDJ
@RedEndermanDJ Жыл бұрын
when did 4chan migrate to discord
@kacperkonieczny7333
@kacperkonieczny7333 Жыл бұрын
_Long ago, beyond the ages, pass the mountains and rivers the council of the 4chan decided to migrate to a new platform_
@TheBenSanders
@TheBenSanders Жыл бұрын
I had Shadow before the OVH buy out. It was a great service sucks this happened for sure.
@BlueMoon1890
@BlueMoon1890 Жыл бұрын
I used to use shadow pre bankruptcy, it was handy for playing PC VR games on my oculus quest remotely. I've been slowly watching them circle the toilet drain since then, my subscription was long cancelled in 2020 and account since deleted, but as someone who's been keeping an eye on them this isn't surprising really. On the bright side, none of the information I used for shadow is up to date anymore since I signed up before coming out lol
@not3128
@not3128 Жыл бұрын
discord needs to hire this man
@casualamber
@casualamber Жыл бұрын
Companies will never take accountability unless they are forced to either from damning evidence or legally
@xAbdulRhmanX
@xAbdulRhmanX 6 ай бұрын
As an Incident Responder a I see this a lot. Less than 1% of cases are actually "sophisticated", most of the cases are dump stuff like this and they add the "highly sophisticated" just to safe face
@Bubby_Le_Wubby
@Bubby_Le_Wubby Жыл бұрын
This, Actually sucks. I am own/rent a computer from their site, listining to this from NTTS is just mind blowing. (I also received the email, and I thought I was safe, it seems that I am not. I still dont know if I should cancel my plan, as I use my computer as a gaming pc, due to me not owning a gaming pc, so I am kinda stuck in a tough spot)
@frelift
@frelift Жыл бұрын
I cancelled it, gonna get my own PC and as for gaming use GeForce Now with fake details. This was the final straw for me, billing address, full name and DOB isn't like a credit card that can be terminated.
@curious_banda
@curious_banda Жыл бұрын
In India it is now illegal to store CC info, you have to tokenise it. Now they have introduced direct tokenisation at bank's website, so you just use token at other websites.
@erikkonstas
@erikkonstas Жыл бұрын
Um WTF... and how would most websites work then? I don't think they are designed to accept some random "token" instead of normal CC info...
@curious_banda
@curious_banda Жыл бұрын
They are forced to. Once you realise you just need a way to link back to the bank account, you don't really need CC info. A unique identifier works. Payment gateway implementation is easier as the complexity is on the bank's side. Payment data of Indian customers are also mandated to be stored only inside India.
@erikkonstas
@erikkonstas Жыл бұрын
@@curious_banda I feel like that would harm Indians more than it would help them... imagine if they want to pay for something at a non-Indian site without a server in India, what are they supposed to do? Is this basically capital controls?
@curious_banda
@curious_banda Жыл бұрын
@@erikkonstas Which card network doesn't have a server in India? You need to realise transactions happen via payment gateways of these networks (Visa is a network), the website doesn't actually handle it. By payment data and processing there is specific data involved, it doesn't just mean the bill generated by a merchant. MasterCard cried to the US government about it. Nothing happened, they were forced to do else all MasterCards were going to get blocked in India. New signups were already blocked due to their non-compliance and cards of domestic rival started getting issued. Plus as of now tokenisation isn't enforced on international files (though they should be), it is domestic mandate only. Fortunately, relatively (on scale) the number of international transactions is not big compared to domestic. Also, card transactions require OTP in India. Same is not the case for international transactions as the mandate is for domestic gateways.
@tomascz9874
@tomascz9874 Жыл бұрын
7:38 This is the best idea! Especially if after a year you forget your password and the site asks for your date of birth and takes it as a security question and you're screwed (it happened to me on two sites)
@erikkonstas
@erikkonstas Жыл бұрын
And that's why we use something called a *password manager* , as long as its name is NOT LastPass...
@TheGoldenSplatRoller
@TheGoldenSplatRoller Жыл бұрын
How the FUCK, does a 500k+ customer company. NOT take security seriously??
@jakeywakey_ow
@jakeywakey_ow Жыл бұрын
A lot of people don’t take cyber security seriously, they always think “I don’t care if my stuff gets leaked, why would anyone target some random dude like me”
@abdullapixelgunofficialperson
@abdullapixelgunofficialperson Жыл бұрын
imagine when discord is not safety💀
@aw_dev
@aw_dev Жыл бұрын
When discord not is trust and not is safety
@creepralt.5694
@creepralt.5694 Жыл бұрын
whn dacad no hayp nd hker gt ip adares
@rando521
@rando521 Жыл бұрын
i expect cloud computing to be insanely sophisticated because all the tokens usually expire in 2-3hours sometimes a week and refresh is easy to build. all the cloud providers i have worked with have a special token for each service. these tokens are huge strings of letters almost impossible to crack. and we the users of these services are requested to be careful in our production environment.
@erikkonstas
@erikkonstas Жыл бұрын
I would be so fed up if my token expired every "2-3 hours"...
@Idamok
@Idamok Жыл бұрын
Wow, I am very surprised I avoided this exact malware problem without knowing I was right.
@xhonprenga1
@xhonprenga1 Жыл бұрын
Truly a master at work
@laeven_
@laeven_ Жыл бұрын
As someone who works in the industry, you should assume all security is a slice of swiss cheese. You should have multiple layers of different systems designed to catch out many types of attacks. It's not really surprising about any new data breach. Corperations will never take security seriously because that would eat too much into their bottom line. You build a wall around your business but didn't bother to add multiple inner walls with tighter checking at each gate. Social Engineering will always be an exploitable attack vector if the employee has too much access to the internal systems they use. The real way to stop your data getting leaked is to just never give it to them in the first place. If there is no legitimate need for information, give them fake information. Use burner emails or email aliases you can create and destroy. Companies are only looking at the front door and thinking its the only way in, unbenounced to the many holes and cracks others have found in their wall.
@kathras
@kathras Жыл бұрын
Social Engineering and Highly Sophisticated dont go in the same sentence.
@FreonSB
@FreonSB Жыл бұрын
Sophisticated. Not only are companies now getting scammed by the most basic scams in history, but they also lie about them being “sophisticated”. Now hear me out: Just telling that stupid truth straight isn’t easy, so understand them a bit. But I still do agree that it is very, very, very disappointing. Other big companies should prevent this ASAP.
@jerejere-qv7xk
@jerejere-qv7xk Жыл бұрын
It was quite sophisticated, ntts was missinformed on what happened because of the stupidly written press release. - Hijack of a steam developper account - Upload of a malware specific for shadow disguised as a game update on steam - Send an employee the link to the game on steam - Classic cookie attack to access the server without credentials. (Not sure about this part) Still there should have been system in place to prevent that.
@bendysans1473
@bendysans1473 Жыл бұрын
So the company had an "idiot" on the computer that day So this is why you dont do that on work computers
@TheHotRodJayden
@TheHotRodJayden Жыл бұрын
People finally talk about shadow and it's about the data breach. Lovely
@hipy-tz3qt
@hipy-tz3qt Жыл бұрын
I always lie about my birth haha. These Videos are so important! Good Content, keep up the good work!
@siquby
@siquby Жыл бұрын
I just got my discord account hacked by one of these, Everyone please be aware of this hack, It may look easy to point out but I fell right through it, Please be careful!
@MysticMylesZ
@MysticMylesZ Жыл бұрын
1:08 ay finally someone giving a hint as to how much it fucking is
@rishibellam738
@rishibellam738 Жыл бұрын
if you are going to make up a DOB make sure it is same across different services because oauth2 might give a service acess to your DOB and if they arent same they might seem suspicous
@oxymoreproducer
@oxymoreproducer Жыл бұрын
like, just have a similar DOB for dumb shit, and your real one for actual gov shit
@rishibellam738
@rishibellam738 Жыл бұрын
@@oxymoreproducer yeah
@erikkonstas
@erikkonstas Жыл бұрын
OAuth2 is the authentication protocol, not a service, it's one site connecting to another via it that could do that.
@rishibellam738
@rishibellam738 Жыл бұрын
@@erikkonstas yeah
@austinlipnicki7761
@austinlipnicki7761 Жыл бұрын
oh hey i got hacked like that, i am really glad i am one of the people that got to keep my account :)
@Null-FR
@Null-FR Жыл бұрын
And they didn't even clear their cache...
@rkiller645
@rkiller645 8 ай бұрын
Funny fact: I tried naming my little studio Shadow Studios as a child but I saw this logo and I was like nope we can't do that
@JBLZFTW
@JBLZFTW Жыл бұрын
I'm so over the defeatist attitude of "oh everyone has my data anyway so who cares" like I got so much shit from people when I ditched windows for Linux like "who cares dude they already have all your info anyway what's it matter now?" It's such a garbage mindset I can't even waste brainpower arguing against it
@kbhasi
@kbhasi Жыл бұрын
(0:26) Ouch. I immediately recognised Shadow as they, like Discord, originally marketed their service to PC gamers, but much like the latter, the former branched out. I had considered subscribing to their service, but ended up not doing so as they didn't have a server location in the region I live in, and had since moved on to a DIY solution. (0:56) I think Shadow were competing with Microsoft's own Azure Virtual Desktop and Windows 365 services with that. Wow. (1:05) I remember I first heard about them through a "My Mate VINCE" video where they loaned the host an account on a server in France and one of their preconfigured thin clients.
@dragodite
@dragodite Жыл бұрын
bro got god rank in a hacking site 💀
@Dante1282
@Dante1282 Жыл бұрын
Revolut offers virtual cards with costume limits (x € one time, per month, or x times only) too
@CursedAlfie
@CursedAlfie Жыл бұрын
imagine being a "hacker" and going thru their website to only find yourself?
@michal_cz17
@michal_cz17 Жыл бұрын
Wait, virtual cc isnt standard in other countries? In Czechia, even banks offer you to create Virtual CC, that will last for few years, or one time Virtual CC that will expire after 30 minutes and you can add limit, that can be withdrawn from it
@123warsie
@123warsie Жыл бұрын
Love Your Videos No Text To Speech!
@uncheck
@uncheck Жыл бұрын
Thanks for making a video about me 😊
@nurgle-j5n
@nurgle-j5n Жыл бұрын
Total Cloud Computing Destruction
@shrimpaerospace
@shrimpaerospace Жыл бұрын
This isn't the first time a young man has breached the data of a large company
@erikkonstas
@erikkonstas Жыл бұрын
LOL I think I know what you're talking about... 😂
@shrimpaerospace
@shrimpaerospace Жыл бұрын
@@erikkonstas Tell me
@erikkonstas
@erikkonstas Жыл бұрын
@@shrimpaerospace Well, NTTS had made a video a while back, about how some youngster with access to military classified data exposed it in the name of War Thunder...
@xxonixzz1743
@xxonixzz1743 Жыл бұрын
You should make a video about the discord vulnerability. Discord has a CSAM detection system , which is kinda obvious. If you post an image and discord detects CSAM from any frame, it'll ban you instantly. I think you can guess where this is going; some creep had a video of CSAM, the frame starting with a dark skinned guy eating popcorn. If you take a screenshot of that frame, which does not include any inappropriate content, discord will detect it and instantly ban you.
@Shadow8797_YT
@Shadow8797_YT Жыл бұрын
THIS IS A SIGN FOR ME 😭😭😭
@staar78
@staar78 Жыл бұрын
me, a ceo entrusting that my employee that used chatgpt to apply wont download viruses on his work computer
@DJProPlusMax
@DJProPlusMax Жыл бұрын
You might say, "Shadow is a rather shadow-y company"!
@rebok232
@rebok232 Жыл бұрын
1. make API safe from the public 2. make API allow you to acess everything in the comany's private network cause why not
@chri-k
@chri-k Жыл бұрын
2!
@joshuacriddle-eg4fgkok
@joshuacriddle-eg4fgkok Жыл бұрын
Prodisty is making shorts now
@jerejere-qv7xk
@jerejere-qv7xk Жыл бұрын
What happened is that they send a link to a steam game that was compromised. So the employee trusted the steam platform where they downloaded the game from. It is linked to a earlier hack of a steam developer account. They went bankrupt 2 years ago but were bought back buy ovh owner, nothing lost by the users.
@Zeda1002
@Zeda1002 Жыл бұрын
why did they download it on work computer
@jerejere-qv7xk
@jerejere-qv7xk Жыл бұрын
@@Zeda1002 shadow pc is mostly sold as a gloud gaming subscription. He probably wanted to test if the game would run on actual shadow hardware. But yeah it's still stupid.
@Minecon724
@Minecon724 Жыл бұрын
​@@jerejere-qv7xk "test if the game would run on actual shadow hardware" by playing it on their work pc?
@jerejere-qv7xk
@jerejere-qv7xk Жыл бұрын
@@Minecon724 I'm guessing their work pc was shadow hardware. But like I said it's still stupid. The fact that the employee could have access to all of that was a clear lack of security too.
@liquidmagma0
@liquidmagma0 Жыл бұрын
@@jerejere-qv7xk lmao testing on prod instead of making a safe test system
@theREALStripeHeeler
@theREALStripeHeeler 4 ай бұрын
2:33 why are all the r/users called Redacted
@ShadowWolfe
@ShadowWolfe Жыл бұрын
I thought about using Shadow PC at some point in the past... glad I didn't, considering their IT and employees are that incompetent.
@subpoenas
@subpoenas Жыл бұрын
A hint for whats to come.
@llayered
@llayered Жыл бұрын
Shadow should have used shadow to run the game lol
@Mario583a
@Mario583a Жыл бұрын
Where is that *D A M N* cookie!? ~ Shadow, not the company.
@Sunsoons
@Sunsoons Жыл бұрын
whenever you post a video i am almost always eating pasta is this a coincidence
@kacperkonieczny7333
@kacperkonieczny7333 Жыл бұрын
"He's in the walls, HE IS IN THE GODDAMN WALLS"
@klarthin
@klarthin Жыл бұрын
Speaking of hacking, I think I may have a virus, as I keep getting the connection refused error, however my internet is fine, I've checked it all, and it's only with my computer account, all my other accounts are fine. I've deleted my memes folder, mp3 songs, and downloads, what should I do next?
@ccgm_harpy
@ccgm_harpy Жыл бұрын
Every company ever, claims they fell victim to "sophisticated attacks". Usually this means an employee fell for a common scam and there wasn't sufficient training or safe guards to prevent it from blowing up. A "sophisticated" attack looks more like a team of hackers, developing and leveraging multiple zero day exploits to deploy custom malware and propagate across your network over the course of several months.
@erikkonstas
@erikkonstas Жыл бұрын
It is also very difficult to execute; in most cases, they would have to brute-force a password to some admin portal, and that only if they don't make their admins do all of their work inside their building (on site, that is).
@vinxmusic_
@vinxmusic_ Жыл бұрын
Good that I don´t have Shadow anymore since they raised their prices
@watersgmd9066
@watersgmd9066 Жыл бұрын
As a shadow user I’m angry to say the least, the only reason this happened is because of how careless they were.
@AteşÇevik-n9m
@AteşÇevik-n9m Жыл бұрын
imagine seeing the same thing happen to discord
@Aklinwert
@Aklinwert Жыл бұрын
as a 15 year old and never fell for a scam this is just sad
@Linkman8912
@Linkman8912 9 ай бұрын
Ahh, it's fine. They should just change all of that information, change your address, credit card expiration, all of that. Easy.
@pistolk1
@pistolk1 Жыл бұрын
Last year I tried shadow and got sick of it because of the monthly price, doged a bullet giving them up so soon
@Legitti
@Legitti Жыл бұрын
Never heard of the company, but thanks tho lol
@Mylophone
@Mylophone Жыл бұрын
i think i lost 2 brain cells
@bandiddums
@bandiddums Жыл бұрын
I've been looking into getting a virtual credit card to prevent this sort of stuff but unfortunately I don't think there's any that are available for my country
@Julot
@Julot Жыл бұрын
I am a user of Shadow for over 2 years and I will say one thing : it's f**king trash and f**king expensive.
@infinite.exhaustion
@infinite.exhaustion 9 ай бұрын
The end is literally “-and they should be ASHAMED OF THEMSELVES. Anyway I love you bye bye!! 🥰🎀”
@alvindms4660
@alvindms4660 Жыл бұрын
truly when company that got hacked
@BuiHieuDong
@BuiHieuDong Жыл бұрын
This Discord hacker is literally so advanced they could even work for the FBI or something similar to that instead of scamming people around.
@TheProxyd
@TheProxyd Жыл бұрын
Hello nigga
@nubidubi23
@nubidubi23 Жыл бұрын
💀
@kacperkonieczny7333
@kacperkonieczny7333 Жыл бұрын
​@@nubidubi23Your profile picture is literally a perfect reaction to that comment
@hydrogennetwork
@hydrogennetwork Жыл бұрын
the website with the leak is breachedforums
@LilacMonarch
@LilacMonarch Жыл бұрын
Shadow the Hedgehog seems pretty popular to me. Shame he messed up this bad
@m4rt_
@m4rt_ Жыл бұрын
Ahh Windows 7, how I have missed you.
I'm Done with Discord's AI Features!
10:14
No Text To Speech
Рет қаралды 334 М.
discord osint
2:59
naho
Рет қаралды 14 М.
ЛУЧШИЙ ФОКУС + секрет! #shorts
00:12
Роман Magic
Рет қаралды 11 МЛН
Это было очень близко...
00:10
Аришнев
Рет қаралды 6 МЛН
ROSÉ & Bruno Mars - APT. (Official Music Video)
02:54
ROSÉ
Рет қаралды 207 МЛН
버블티로 부자 구별하는법4
00:11
진영민yeongmin
Рет қаралды 28 МЛН
How to Report Someone on Discord?
1:00
ElectronicsHub
Рет қаралды 9 М.
How Hackers Bypass Kernel Anti Cheat
19:38
Ryscu
Рет қаралды 754 М.
Scammed by a Discord Sugar Mommy...
13:54
No Text To Speech
Рет қаралды 865 М.
When you Accidentally Compromise every CPU on Earth
15:59
Daniel Boctor
Рет қаралды 869 М.
De-Google Your Life - Part 1: Start With Chrome
19:31
Linus Tech Tips
Рет қаралды 2,3 МЛН
Exposing Discord's Degenerate Gambling Predictors...
23:44
No Text To Speech
Рет қаралды 313 М.
Why I Don't Trust Opera GX...
38:12
SomeOrdinaryGamers
Рет қаралды 1,4 МЛН
This STEALER Infects Discord
14:08
Eric Parker
Рет қаралды 42 М.
Watch this hacker break into a company
2:56
CNN Business
Рет қаралды 3,9 МЛН
ЛУЧШИЙ ФОКУС + секрет! #shorts
00:12
Роман Magic
Рет қаралды 11 МЛН