MAJOR scam. Entire website full of pokervideos and material - with the sole purpose of hacking.


Fast warning for everyone. Someone attemped to hack me just a few hours ago - and to be honest 95%+ of all people would walk right in the trap - so someone might have.

I was contacted on MSN by a swedish player that goes by the nickname "Cheesecake" (MSN: nestor_pkr66@hotmail.com).

We spoke for a few mins about PLO and how life was.... then he wants me to watch a video of a pot between durrrrr and fullflush and sends a link for www .pokerproalbums.com (obv don't go there, and DEFINATELY don't push any videos there).

Site looks VERY genuine, with loads of videos, forum, login, etc... Thoroughly developed. Alarm bell goes off when I'm about to watch the video and it tells me to update my flash player. I know I have a 100% updated flash player, and furthermore the flash is hosted on the local site server, not from adobe.

So I have a friend from the IT-department of the police check out the site, and his verdict was disturbing: SCAM. Trojan, backdoor, the works.

I have spoken to several people after this incident, and turns out I'm not the only one. Several people playing the 200-400+ nlh/plo games on FTP, have been contacted with links from this person (obviously his MSN is hacked).

If you visited the site and watched the videos: Shut down system. Contact friend and have him help reset all passwords (poker+email) from friends clean computer. And reformat your own computer.

That's all... will update if further investigation provides any results.

/Peter W Jepsen

scary.

thanks for the headsup peter

ty i think i got this email too

Pretty clever.

This is an old trick. Someone tried to hack me over 3 years ago with a video showing a FTP employee being arrested for stealing, which of course asked for a flash update that is actually a keylogger.

Adding to what peter said, it is important that you change your password on a computer that hasnt downloaded said update, as it likely contains a keylogger, and the malicious party will receive your new password as well.

Furthermore, contact the sites where you have money immediately. Most ppl use the same password on all sites and if you've typed your password since downloading the attachment, nothing is safe. Contact the security departments of all these sites and they will likely freeze your account. Then once you've reformatted your computer, they are likely gonna need Id prior to reopening it, just to ensure they are communicating with you and not the hacker.

how do you find out if you have that wrong flash player?

ive downloaded some update recently but i think it was the auto update by adobe i aint sure tho.

i have kaspersky running tho, and def never visited this site but you never know.

Yes i allso would like to know this.

Downloaded a flash update this morning.

Guys, I realize that PWJ has said that 95% of people would fall for this, but I don't believe this to be true. The site would simply be telling you that your flash was out of date and inviting you to download an executable from their site to rectify the problem. Most people these days can tell the difference between a website and an application (such as an adobe updater) running on their PC. You should know by now that you need to be very careful about where you download executable files from, and some site you've just been emailed certainly doesn't qualify.

You can see what flash player you have installed here
http://www.adobe.com/software/flash/about/
but to be honest that doesn't do you any good as the executable that they offered for download likely* had nothing to do with flash in the first place.

This isn't to say that a website designed to specifically target poker players isn't worthy of a post. It certainly is.



*The site is down so I can't actually confirm any of this

I fell for this a few days ago when a guy I really trust asked me to give my thoughts on a hand for him. Think his msn was hacked or something. Hadn't updated my flash player in a while so I just went with it. Today i realized that I might have a keylogger. Searched my comp with a few programs and didn't find anything but I i reformated my computer anyways. Just wanted to be 100% sure that I didn't have **** on my computer.
If i had a trojan on my computer I sure was lucky that they didn't hack my account before I realized it.

this is (well, one of the reasons) why you use seperate pcs for chatting and playing poker ><

one should also think about how anti virus programs work.
they search for certain code that is known to them. most virusses and stuff are built using common components. this is what the usual AV programs look for.

however since this guy targeted specific individuals directly its likely that he created a brand new trojan on his own (if hes capable of doing so) and therefore your AV wouldnt recognize it. only a firewall would realize that something is sending out data but it could be disguised really well with a nonsuspicious name that you just auto allow without thinking.

with anything and everything trying to connect to the internet nowadays (and if its just for autoupdate purposes) lots of people have a firewall and just autoallow processes without even looking at what it is. since its just that annoying thing at the bottom right that pops up all the time.

Is this what you did to gus hansen? Tell him to work on his game and watch videos and then see his whole cards?