The White Hat Hacking Prevention Guide How to protect yourself! I will be constantly updating this with new requested topics and helping anyone in the comments! Not sure what something means? Definitions at the bottom of the page Quick Info About Me (Intro): Just in-case you believe me to be one of those 'script kiddies' who no nothing about prevention of any sort of hacking or general safety while using your PC, here's a quick few things about me Note: This is my first guide since previous people I have helped asked me where I can look all this up in one place and I really could not tell them a good place for them to look! Been in multiple bug testing / crash coursing many anti-virus and anti phishing web based add-ons. Studying every colour of the rainbow of online hacking; anything from E-whoring to RAT'ing for over 2 years (all for white-hat purposes obviously). Have successfully provided support to many people on-line with retrieving stolen CS:GO items, reclaiming accounts and helping them remove RATs. Been a middle-man on WOW and Guild Wars 2 and helped 20+ transactions in total This guide will be in sections for a variety of topics so feel free to scroll through to the topic which you need to know most about there will be an index here: Hijack prevention! (Phishing and RATs) How to stop getting trade or middleman scammed! <request a topic in the comments> <request a topic in the comments> How to stop getting hijacked on steam: Firstly I'll explain how most people get access to your steam account or any accounts in general that you may hold value you to. The main way you would get hijacked is through Phishing links or a RAT. Phishing is done though someone cloning a website, so someone has re-made the steam login page which looks identical to the normal page so you would not know any different. This is an example oh a phisher. Phishers will attempt to make the link look like a screenshot link (like gyazo or light shot etc.) or make it look like official steam or website link as shown above, which as first glance seems legit; when you look closer you see all they have done is slightly change the name of "steam community" to "sleamcornnunity" which if you were feeling abit sleepy or not paying attention you would click it. The link would take you to something like this asking you to sign in which seems legit enough until you look at the URL bar in which they have "communuty" instead of "community". Upon signing in the hacker will see someone has signed in on his domain then copy and paste your username and password then login himself! To prevent this you must make sure on your Steam Guard is turned on and if you feel like someone has already have access to your account then "Deauthorize all other devices" Also to prevent this further turn on confirmation of trades so if they do gain access to your account they will not be able to trade the contents of your inventory without your email confirmation. This is under "profile settings" then "privacy settings" as shown below. Always make sure to be careful on accounts with very low steam level or profiles on private! To check suspicious link use https://www.virustotal.com/ and click on URL then paste in the link to see how legit it is! ◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊◊ Now the second way of Hijacking your account is through a RAT. A RAT (short for Remote Access Trojan or Remote Administration Tool) can run harmful code on your PC or someone may zombie your PC turning it into a Bitcoin mine but even more worryingly it can key-log you and also see all your saved cookies and passwords. Fortunately this is harder to set-up and most anti-virus' can detect this. (for you more knowledgeable ones this can also depend on how advanced or new their crypt-er is) I personally use Avast anti-virus for my protection otherwise I suggest Kasper sky as a good paid alternative. IMPORTANT: If you think you may have a RAT (this goes to you guys who pirate games and download movies off the internet or trust youtube description downloads) then download https://www.malwarebytes.org/ however if your PC is still not running right or you believe there is a updated RAT on your PC which your anti virus can not pick up or malwarebytes can not either then download http://www.surfright.nl/en THIS ONE MAY DELETE MODS OR ADD-ONS TO GAMES, however this will almost certainly remove it. They can get a RAT on your PC either hidden in a download or through a JAVA drive by, I will explain how to defend from both (if you want to check now for a RAT then download malwarebytes from the link above). The main way to stop a RAT from entering your pc is to watch what you download, the main ways ways people trick you into downloading or the most places you'll find these download links: "coin" generators, any program which claims to generate some sort of in-game currency or steam game keys is 100% fake and is a RAT. YouTube descriptions, accounts with low subs or 1 or two videos are ones to avoid sincee they will offer a download to something free or tell you how to get minecraft for free or something like that, Don't trust the link it will most likely download a RAT or virus. Just generally avoid downloads which seem to good to be true, because they usually are. Also remember websites with things like download counts or likes can be FAKED so never trust a download link off a bit of html code showing downloads since it will most likely faked. Now Java a Java Drive By first started becoming big in Runescape where people used to make fake Runescape pages which a pop up would come up showing "run program" which normally would run the Java plugin but in a hackers case would inject your PC with a RAT. Now again using the virus total link scanner (https://www.virustotal.com/) you can check a suspicious website asking you to do this! I'm going to be brutality honest about RATs. If you get one and it's an active one they will most likely gain access to your email and other passwords however if in a worst case scenario where a lot of money was stolen through you from your PayPal the police can trace back the IP quite easily even if they are using No-IP or something like that and recover your money one way or another which is why most RATs only zombie your PC and mine bitcoins. In some cases steam support will back track trades and get your items back if you provide enough evidence and the inventory is high enough value to be worth their time (harsh I know). This completes the guide to prevent Hijackers! How to stop getting trade or middleman scammed: Mostly with this is abit of common sense and don't trust players online, however for arguments sake of scammers getting smarter I will go into depth of what to look out for and useful tools! When trading you will come across people trying to low ball you and trade you rubbish for something good in your inventory. Mostly they will do this for trading you lots and lots of skins to make it look like they are giving you more when actually your item/s are worth more! A good way to check this is http://csgobackpack.net/ to calculate inventory values or use http://csgo.steamanalyst.com/ to look up individual skins obviously this is for CSGO only so with other games I strongly suggest using the community market to work out prices and inventory values, it worth your time! Now a big time thing now is middlemen scams where you will have to have your wits about you to prevent getting scammed. I will explain how middlemen work quickly for those who don't know: Skin selling Sam wanting to sell his AWP asiimov for some real cash so he finds Skin Buyer Bob who offers to buy it for $50, so then to sell it he then contacts middleman miles. Sam then sends miles the skin which then when confirmed bob will send sam the cash which upon sam confirming he has received it, miles will then trade the skin to bob. everyone is happy! but not always.... Flaws in this include: Fake middlemen impersonating a SteamREP middle man or not found using SteamREP Using paypal the buyer then charging back the money Ways around this are checking steam profiles and comparing to the ones linked on SteamREP and using alternatives from paypal, I suggest bitcoin if possible. In all middleman transactions ALWAYS record so if it comes to it steam support may be able to get your items back and the paypal case operator may take this as valid evidence to stop the chargeback. Good and easy to use recording programs are here: http://www.fraps.com/ or https://obsproject.com/, personally I use OBS since there are many online tutorials and is a better piece in software in total. Adding more topics soon! feedback in the comments would be great Definitions: white hat hacking: someone who learns different aspects of hacking for good purposes like creating anti virus' or to protect themselves from it. middleman: someone helps create transactions between two parties so there is no foul play Phishing: the fraudulent practice of sending emails purporting to be from reputable companies in order to induce individuals to reveal personal information, such as passwords and credit card numbers, online. "Script kiddie": normally found lurking on cs:go competitive originating from silver 3 who downloads hacks and claims to be a master hacking from running a .exe file. Can also be found shouting at you after you killing them claiming to "DDOS" or to "Hack you" In a very high pitched voice.