I think my laptop was hacked around January 20th. I left it in sleep mode while I went to the movies for a few hours, and when I returned, the screen was black asking me to reset it. I reset it without giving it much thought. A few days later, I noticed my mouse moving on its own and an application called 'Screen Connect' opening up. I panicked, shut the laptop down, and ran a Windows scan in safe mode, which reported no issues. I then uninstalled 'Screen Connect' since I didn't install it myself. Fast forward another week, and the mouse was acting up again. I used Malwarebytes to quarantine and delete some files, but out of panic, I did a full reset of the laptop and created a new burner email account for it. Is there a way to ensure I'm completely safe now, or have I waited too long? Any advice would be greatly appreciated!
4 Answers
I’m curious how that software installed itself in the first place. Typically, unless there's a remote desktop port open, the hacking would require physical access or a vulnerability in another device connected to your network. Do you share the laptop with anyone else?
You might want to check for any signs of malware on other devices too. They could potentially be compromising your laptop through the network if they're infected. It’s a good idea to make sure everything is secure, even your router.
Make sure to do a full reinstall, not just a reset! Use a USB installer created from an uncompromised device. Until you've done that, avoid using your laptop to minimize risks. Change all your passwords and turn on MFA wherever possible. Keep a keen eye on any suspicious activity across your accounts, especially your email and financial sites. It might feel tedious, but this step is important to ensure your safety.
It sounds like you might still be at risk. A full reset isn't always enough after an infection. I recommend that you reinstall Windows using a USB installer from a clean machine, not just resetting the current setup. It's also crucial to change your passwords and enable multi-factor authentication on all your accounts. You should start with your email and then move on to any accounts that might have sensitive info, like bank details.
Thanks for the tip! I have a question though, what does 'reinstalling Windows' involve? I’ve never done it before.
Could you explain what 'MFA' means? I'm not familiar with it.