I remember several hacks of people I know, in various social media channels. I also experienced many scams. I have been writing for many of them to spread awareness, but it is not enough. I even got my LinkedIn account compromised once (due to the lack of 2FA, but I soon got it back, luckily without scamming anyone)
The one thing that got me most worried and scared during the time my account was compromised was, who may trust the scammer - believing that it would be me, sending malicious dms or posting scam links to the public?
The channels usually pay attention to the account owner, having some measures (even if they are usually inadequate) aiming to the real account owner. Users can send to the support and ask for their identity to be verified etc, but the followers of the account are almost never considered - and they are the ones to pay the price, more in danger than anything else.
Social Media channels usually suggest a report to the hacked account and to their posts, but it usually takes time. A friend was recently hacked on X. He was lucky because the account had his real name and his real photo. Even so, it took him 4 days until he regained access. 4 FULL days with numerous emails, messages etc.
During that time, the hacker was free to do anything they wanted under the safe name of the real person, and scam other people too.
In fact, several other accounts were hacked, because they believed what the hacker sent them and fell for it.
All the above, and as I saw that there is not really in the channels' interest to protect its users, I have thought for an additional measure that could be implemented on X (and of course to other accounts too) so I plan to create a post and an article on X today.
Before that, I am posting it here and I hope that it will be considered.
I really hope that we can make our online world safer than it is...
(Image created by Bing - with my prompt)
So, this is my suggestion, which I believe may not be so difficult to be implemented
If an account on X changes critical security details like:
• Email address
• Login location
• Password or device
X (or any other social channel) should automatically notify followers and recent DM contacts with a warning like:
⚠️ “This account recently changed important security information. Please be cautious with links or messages.”
This is very important, because it also acts pro-actively and could...
• Prevent scams before they spread
• Protect communities, not just individuals
• Build trust in the platform
• Add transparency without violating privacy
Remember, one hacked account was participating in a group chat of ours, and when I said that we should report him, he threatened me that he would summon bots to kill my account and destroy me - yes, those were his words exactly
Having said that, we should also personally take all necessary measures and precautions before believing someone and also clicking links etc.
We should mention that a while ago, X introduced a new feature, where for all users, it is possible to see where they are logging from, when their username changed etc
https://x.com/katerinaramm1/about
A few tips and habits that matter, lets keep them in mind and lets stay safe
- When you’re tired or distracted, avoid making quick decisions, that’s when mistakes happen
- Don’t click immediately, pause and verify first
- Online, trust should never be automatic, always question and double-check
Here's a recent crazy (and so sad), true story
A friend of mine was recently let go from his job. He wrote on some channels that he is open to discussions and job offers ... One of the hackers sent him a message where it was supposed to be a webex link for a teleconference/interview for a new job ...
A few hours before the ..interview, he tried to log in using one of their devices.
It failed... Then they tried through their phone, this was not successful... and a few moments later, they tried to log in through a third device...
Just a few seconds later, the notifications on the mobile phone were so many .. 2FAs, withdraws and a bunch of other stuff.. in all 3 appliances.
All this, because someone was so anxious to join an interview, and did not take a moment to stop, think, and act.
So please, please, be careful.
Thanks for listening and feel free to share your opinion or experience below..