my amazon got hacked

Duckforceone

Space Marshal
Feb 25, 2016
333
871
2,200
RSI Handle
Duckforceone
yeah i know, didn't have 2 step verification on it apparently.

but then it comes down to, that someone intercepted my login details.

So what anti-virus / anti malware program should i invest in to keep myself as safe as possible?
 

Floating Cloud

Space Marshal
Apr 8, 2016
565
1,720
2,510
RSI Handle
Floating_Cloud
I use malwarebytes (https://www.malwarebytes.com), and have a lot of confidence in it. Having said that I also run an antivirus package, which changes depending on my perception of their product (and their price) at any one time. Kasperky, McAfee, and currently Bitdefender. So far there have been no problems with running an anti-malware and anti-virus side by side (in fact malwarebytes is designed for just that).

For malwarebytes just bite the bullet and pay. For the AV I suggest looking on ebay for an offer on last year's product (hugely discounted) and apply that licence to the latest version - they all allow you to keep up with the latest version during your subscription period so buying a cheap licence and downloading the latest version direct from the AV vendor not only makes sense, but is completely legitimate.

Pro tip: keep an eye out for the two or three year licences. Dirt cheap if done via ebay and saves you worrying about it again for a long while.

Sorry about your troubles.
 

Thugari

Space Marshal
Mar 11, 2016
1,327
4,585
2,600
RSI Handle
Thugari
Malwarebytes (free version is fine but you have to run it manually) then kaspersky is the best as @Blind Owl said.
I also must add= that Kaspersky has a web bar to run in an internet browser. Use it its key to preventing many things. I know this first hand. including the infamous crypto virus
 

Duckforceone

Space Marshal
Feb 25, 2016
333
871
2,200
RSI Handle
Duckforceone
especially with me starting to stream and using paypal and stuff...

so yeah, i'm ramping up my security by alot now.

First testing.
Malwarebytes with Kaspersky internet security.
and keepass for security.

Going to do a full comp reinstall tomorrow, and then i'll ensure that all passwords are separated and saved.
 

EpilepticCricket

Space Marshal
Oct 20, 2014
1,403
4,905
2,160
RSI Handle
EpilepticCricket
especially with me starting to stream and using paypal and stuff...

so yeah, i'm ramping up my security by alot now.

First testing.
Malwarebytes with Kaspersky internet security.
and keepass for security.

Going to do a full comp reinstall tomorrow, and then i'll ensure that all passwords are separated and saved.
Make sure you change every single one of your passwords as well. If it was local malware that got your Amazon credentials, then you have to assume that it got every other ID/PW that you've typed or saved on the compromised machine. Also, I always recommend running a scan on every possible device on your network just to be safe. It might your phone, the SO's laptop that you borrowed that one time 3 months ago, or a kiddo's tablet and they wanted an app purchase or something. If you find something somewhere else then you need to go through the process of changing all the passwords that were used on that device as well.

I use Avast Mobile Security on my Android devices. It's free, lightweight, and (thus far) good with a large feature set. I've heard good things about Bitdefender, but have never used it since I have a free option that works well enough for my home network. I don't have any iPhones on my network so I can't make a recommendation there.
 

mindfart

Space Marshal
Donor
Feb 10, 2015
585
1,785
2,610
RSI Handle
mindfart
And you didn't use the same email/password combination somewhere else? That is the most likely explanation if you can still access all your other important stuff. If you aren't sure do what Cricket said and change all of your passwords you used on the machines you logged into amazon with.

Also check here if your mail address has been found in any datadumps: https://haveibeenpwned.com/ also register to get an email when your mail address gets found in a dump.
 

Duckforceone

Space Marshal
Feb 25, 2016
333
871
2,200
RSI Handle
Duckforceone
yeah checked that. logged into amazon outside the mail, so it was legit.

it's either a keylogger, or one of the standard old passwords i was using that got exposed in one of the recent larger providers hacks...
not sure if i still used one of the standard ones for amazon.

but i'm playing it safe, and treating it like a keylogger.
 

Duckforceone

Space Marshal
Feb 25, 2016
333
871
2,200
RSI Handle
Duckforceone
And you didn't use the same email/password combination somewhere else? That is the most likely explanation if you can still access all your other important stuff. If you aren't sure do what Cricket said and change all of your passwords you used on the machines you logged into amazon with.

Also check here if your mail address has been found in any datadumps: https://haveibeenpwned.com/ also register to get an email when your mail address gets found in a dump.
yep i was on that list... so that is most likely the culprit.
 

Bruttle

Space Marshal
Donor
Aug 20, 2016
664
2,547
2,600
RSI Handle
Bruttle
I have been using Avast for years, mainly because it has a boot scan option (can scan for viruses before the OS and the viruses themselves load). That being said, most of the antivirus programs run off their own proprietary list of viruses. Each one has a slightly different list, so no single program will catch them all. Now for the statistics, there are something like 80,000 new malware programs generated daily. F*cking daily... Then, it can take 6-12 months for those malware programs to make it on one of these antivirus lists.

So, that means that your internet hygiene is the most important (and possibly only) effective measure. That means using both capital and lower case letters along with numbers and special characters in your passwords. That means paying attention to the little locked symbol in the upper right hand portion of your browser. That means changing your passwords often. You probably know all that though. We all do. Even if you have immaculate hygiene though, it's only a matter of time.

What I have resorted to, is accepting that I will get compromised at some point. That puts the focus back on things that I do have control over. For instance, do you know that you can "lock" your credit? It's called a credit freeze and will stop most fraudulent attempts at creating a new credit line in your name. You can also review the policies at your local bank. Often times, you can adjust the security levels surrounding your bank account. Some offer more security than others. The one I use is really good and will catch any transactions that are outside my "normal use".

The last, and possibly most important part, is sticking to online companies that have solid policies for fraud. Amazon is a great example. If there is a fraudulent purchase, they are quick to give you your money back. If a package was stolen, they are quick to either refund or replace the item. Some of the smaller online companies don't have such eagerness. Some actually have both crap security and nonexistent refund policies. So sometimes getting an item for $10 cheaper, doesn't turn out to be cheaper in the long run.

Sometimes though, no matter what you do, you still hop on your online bank account and find yourself asking "When the hell did I buy $6 in gas? Wait, India? I've never even fking been to India!"
 

I_MIKE_I

Space Marshal
May 7, 2016
396
1,114
1,900
RSI Handle
I_MIKE_I
Forgot your password?