Navigating the Aftermath of a Hacking Incident: Steps to Take and Tools to Consider

Recently, I found myself in an unfortunate situation where I fell victim to a classic scam commonly referred to as the “Test my game” scheme. It all began when two old Discord accounts, which I had trusted for years, contacted me with a seemingly harmless proposition: to download a game for testing purposes. Regrettably, I was too trusting and proceeded to execute the file they provided. The results were concerning, as I soon received a message from a third Discord account showing a screenshot of someone logged into my Google account.

Fortunately, I had a backup plan in place. I immediately disconnected my PC from the network and logged out of all devices associated with my Google and Discord accounts. This decision proved to be crucial. I also started the process of resetting my passwords, especially since many were saved on Google and initiated two-factor authentication (2FA) wherever possible.

For added security, I performed a clean installation of Windows 11 on my PC. This step only wiped the drive that housed the operating system, so I wasn’t able to clear everything other than Windows itself. Since that initial cleanup, I’ve executed a thorough scan using Windows Defender and am conducting another round of scans to ensure no traces of malware remain. My plan is to enhance my defenses further by installing Avast and Malwarebytes to catch any potential threats. Until I am convinced that my system is secure, I am keeping my PC offline.

I located the malware on a suspicious site, which can be checked at oblivora dot com. However, I wouldn’t recommend visiting it without proper protective measures in place.

While I would prefer not to wipe all my drives, I realize that it might be necessary in the wake of this incident. If a thorough drive wipe is unavoidable, what tools are recommended for such a task?

In addition, I seek feedback from knowledgeable individuals: Have I taken the appropriate steps to rid my system of malware and secure my accounts post-breach? Your insights and advice would be invaluable as I navigate this challenging situation.