Hey everyone, I could really use some guidance. I'm the go-to tech person for my family, but this situation is putting me out of my depth. My dad owns a couple of used car lots, and recently one of his employees clicked on a suspicious link—likely from an email. This caused a pop-up, and after giving his name, the employee realized something was wrong. It seems that the link gave someone remote access to the computer, as they sent a creepy message saying, "Hello *employee name*, I am watching you," and even opened some inappropriate websites. To make matters worse, they installed a mirroring app. Although this looks like amateur hacking, they could now access sensitive customer information. My dad told me the computers aren't networked, so I'm not sure how far this could spread. Should I start by contacting the FBI like I've seen suggested in other forums, or is there something else I should be doing?
5 Answers
Definitely reach out to an MSP to handle the situation. Security issues like this can escalate quickly, especially with customer data potentially involved.
Before you do anything, just disconnect that computer from the internet. Pull out important files if you can and then wipe and reinstall the system. Trying to clean it while it's online could lead to more issues since it’s possible something malicious could be hiding in the background.
It's crucial to get professional help right away. If there's any indication that someone had remote access, they might try to penetrate other devices later. Plus, since your dad’s business involves financing, they probably need to comply with FTC Safeguard rules—which means budgeting for proper IT support is essential. I'd strongly advise getting a managed service provider (MSP) involved to monitor their network and address the security issues. Also, consider a cyber insurance policy to protect against future incidents.
Totally agree. Protecting customer data is vital and being under the FTC regulations means they could face serious consequences if they don’t comply.
I’d suggest that contacting experts is the best course of action. Before you reach out, though, unplug the computer and shut it down. Depending on where you live, there might be laws requiring your dad to report this situation to local authorities.
Be cautious with shutting it down! Doing that can erase logs that forensic teams could use to figure out what happened.
You might also want to talk to your insurance company. Some states have specific disclosure requirements, especially if customer data may be compromised. It's tricky because it could be anything from a prank to a serious breach, so isolating the computer and backing up is absolutely necessary.
But don't rush into contracts with MSPs too quickly. It's important to evaluate their needs first—keep in mind not all small businesses require round-the-clock monitoring.