Answer the question
In order to leave comments, you need to log in
A
A
Alexander Bukhalo2014-02-21 12:45:39
Alexander Bukhalo, 2014-02-21 12:45:39
How do attackers gain access to a VKontakte page?
The situation is this. My girlfriend's VKontakte page was hacked. Without thinking about the method of hacking, I changed her password, tied it to my mail, broke sessions and deleted all applications that had access to the page via API. Respectively covered all the holes. The next day, the VK page again subscribed to groups with dildos and bdsm. Tell me where to dig?
UPD: the girl is sitting in VK from her phone and tablet. Rarely from a computer, it has Linux on it. If it comes from someone, then presses the exit button. She doesn’t use Wi-Fi in cafes after I showed her traffic sniffing.
6 answer(s)
@inkvizitor68sl
@LazyProger
@Lamaster
V
Vlad Zhivotnev, 2014-02-21 @inkvizitor68sl
Switch her account to forced https and repeat the same thing that you have already done.
D
Dmitry Prikhodchenko, 2014-02-21 @LazyProger
Well, firstly, the API cannot be accessed to get the user's email, so this is superfluous.
2) always check the hosts, it may have a rule in which vk.com will be redirected to a completely different server, where the VK page is copied, when it enters, they receive data.
3) I hope you do not manually delete all groups, write to those support in VK, they will clean everything up
4) in the same support you will be advised to check, with this program https://vk.com/app2951231_19459572
L
Lamaster, 2014-10-20 @Lamaster
Most likely an already authorized site-application. Once received authorization through OAuth will not be deleted just like that. I looked for a page that displays authorized application sites with their permissions, but did not find it.
Similar questions
T
K
I
P
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question