Free Dark Web

  • 1
  • Idea
  • Updated 2 weeks ago
As a result of receiving advice from a security service I use regarding safe keeping of passwords, called Dashlane, they advised me my system may have been compromised and they provided a free scan product that revealed I had three breaches which "stole" usernames, IP addresses, passwords and emails. How can this happen when I have a full blown security in Trend Micro supposedly protecting my systems?

Photo of rob.val

rob.val

  • 120 Points 100 badge 2x thumb
  • Disapointed, concerned and confused

Posted 3 weeks ago

  • 1
Photo of Tom Emmelot

Tom Emmelot, Champion

  • 24,362 Points 20k badge 2x thumb
Hi rob.val

Welcome to TM Home users Community, a public site where volunteers try to help each-other , also there are TM Employees that can give answers, that is only at working hours. I am just a volunteer!

Can you provide me that free scan program that you got from them, so i can look of mine passwords are stolen!
I use TM maximum now for 20 years and never got a infection or stolen usernames.
But you make me scared.
Hope to here from you.

Kind regards,
Tom

(Edited)
Photo of TM_X

TM_X, Official Rep

  • 6,346 Points 5k badge 2x thumb
Hi rob.val, 

As Tom requested, can you please provide us the free virus scanner? That will allow us to check it and its processes. 

^X
Photo of rob.val

rob.val

  • 120 Points 100 badge 2x thumb
The scan that I had sent to me was from a company called Dashlane and it would not function on a different database. May I suggest you address your comments to Dashlane and they might be able to assist.

Rob
Photo of Tom Emmelot

Tom Emmelot, Champion

  • 24,362 Points 20k badge 2x thumb
Hi rob.val

How you got the idea to let Dashlane to do a scan on your computer?
I do not think anything has been stolen from your computer and this is because your using TM!
And that is why i ask you the program where they show you that you got a data-leak.
Because if so, they should have this scanner public on their site, but that is not there!!!
I think that Dashlane try to sell you their product , and if you have Trend Micro Maximum security you also get a password manager.
Here from you,

Kind regards,
Tom


Photo of rob.val

rob.val

  • 120 Points 100 badge 2x thumb
Hi Tom

I have been subscribing to Dashlane for a quite a few years and what I like about their system is all of my passwords are available to me via any computer I am using or any hand held device I have, no matter where I am. The service re the dark web issue is a new extension to their services which I didn't know about. The fact that someone has raided my PC without leaving a sign that was not picked up by TM was why I logged that question. As a result I have discontinued my contact that I had with the three public sites where my security was breached and that now gives me a better feeling of security. I will continue cancelling my contact with sites that I no longer use and that should give me further safeguards.

Regards

Rob
Photo of Tom Emmelot

Tom Emmelot, Champion

  • 24,362 Points 20k badge 2x thumb
Hi rob.val

I know Dashlane, is also available in the Netherlands where i live.
But i still dont know how you find out that "stole" usernames, IP addresses, passwords and emails.
And that this was stolen from your computer. So what triggered that you find out this!
If you have sites where you must login and they are not protected and if you must put in your email address, yes then they have some information from you.
What you mean is that you really was hacked and they compromise you with it!
Here from you.

Kind regards,
Tom


Photo of rob.val

rob.val

  • 120 Points 100 badge 2x thumb
Tom

I was completely unaware of any issue until Dashlane sent me an e-mail inviting me to run their application on my files.

As they have devised this facility for their customers I assume more people will join their system to gain the benefit of this development. I am still disappointed that TM didn't have any way of alerting me to the fact that this issue exists.

Rob
Photo of erza

erza, Official Rep

  • 3,150 Points 3k badge 2x thumb
Hi rob.valTom Emmelot,

Good discussion, let me join in!

Trend Micro Security cannot prevent your email address stored in banks, social media or other databases from being stolen during a data breach (e.g. Yahoo, Facebook, Under Armour, etc).
From experience, Facebook notified me by email when my email address was stolen not from their database but from another. 

It's a nice service but it also means they have access to the list of stolen email addresses (⌒_⌒;)
I think it's a good idea to notify customers of a breach and so we can take action. After I was notified by Facebook, I changed my email address, updated all my online accounts, called my banks...

@tom If you're looking for a service/product, I use HackNotice to monitor the latest hacks and identity exposures. You can also check here but use it only if you are comfortable https://haveibeenpwned (dot) com

Now, it's a different story if your email address and passwords are stolen from your computer. 

^erza

P.S. I moved this to Idea section. 
(Edited)
Photo of Tom Emmelot

Tom Emmelot, Champion

  • 24,362 Points 20k badge 2x thumb
Hi erza, Official Rep , rob.val

Thanks for the link you provided, ^erza,
And  Rob thanks for the input, shall try to get the program that looks on your computer to see i am hacked from Dashlane.
Stay posted.

Kind regards,
Tom


Photo of rob.val

rob.val

  • 120 Points 100 badge 2x thumb
Thanks Tom. I am receiving some emails from Hackers claiming to have hacked my business web site. The email they sent me used my own email address associated with my business as both the sender and recipient How can that happen?

Rob
Photo of Tom Emmelot

Tom Emmelot, Champion

  • 24,362 Points 20k badge 2x thumb
Hi rob.val

And your business website is running at a provider and protected with???
And what can they do on your site and did they already?
Did you change login and passwords from your site and is the mail the same as the website?
Tell us more.

Kind regards,
Tom

Photo of erza

erza, Official Rep

  • 3,150 Points 3k badge 2x thumb
Hi Rob,

Can you still access your email? If yes, I suspect that's email spoofing - forging the header to make the message appear like it came from you. It requires investigation to find the origin of the email message.

After you learned about the breach, did you change your password? Here are things you can do: https://www.pcworld.com/article/32688...

https://www.trendmicro.com/vinfo/us/s...

But tbh from my experience, I had to discard the email address that's been stolen from a breach. It became a huge spam mailbox.

^erza
Photo of rob.val

rob.val

  • 120 Points 100 badge 2x thumb
I understand all that, but my original comments related to how could the original activity which appeared that someone had penetrated my own network/PC which I thought TM was covering that. Rob
Photo of erza

erza, Official Rep

  • 3,150 Points 3k badge 2x thumb
Hi Rob,

I will point you back to Tom's response that the tool used by Dashlane scanned not your computer but all things in the web related to your email address.
Unless what they're saying is their scan shows that the data theft happened in your computer? Did they send you the report? I will ask the same question as another rep above, what is the tool they used so we can understand how that works and what it detects.

But as far as Trend Micro solution is concerned, I'm sure it's doing its job detecting and stopping malicious and suspicious activities. And if you turned on Data Theft Prevention previously, it will detect and stop your pre-set information from getting sent out to the internet.

My assumption is your email address has been affected by one of the data breaches and has been leaked and Dashlane is notifying you that your computer could be compromised now that someone (or some people) has your leaked data. I could be wrong, so we need to know more about the product or service you used.

^erza