This current post is the result of several months of work. I tried to describe the whole thing in a somewhat story-like manner to make it easier to digest.
I have always been drawn to technology, codes, and how things work behind the scenes. One day, during a routine check, I stumbled upon a strange email in my spam folder. It was about a prize draw. (This will be good for a little practice, I thought...) At first, to be honest, it just seemed like a small challenge, but as I delved deeper into the matter, I realized there was much more to it.
My curiosity was piqued, and I got to work.
I started to wonder who could be behind the email and what their purpose might be. (Well, what could it be?)
As a first step, I thoroughly examined the website. Browsing the source code, I tried to find clues, but most of the information was hidden.
Based on the domain name, I managed to identify the hosting provider, a foreign company. I contacted them, but didn't achieve much.
One of the biggest challenges was communicating with the hosting company. They were reluctant to take my concerns seriously, as I was contacting them as an unknown individual. The form I was supposed to fill out contained a small box that had to be checked. This box stated that I agree to my personal data, along with my contact information, being sent to the website owner. Even as they envisioned this, I described my concerns on their platform, to which they couldn't provide a reasonable solution, so I left it at that.
I didn't give up. I continued my research. Based on the IP address, I determined the geographical location of the server, and then in the WHOIS database, I looked up the domain registration details. Unfortunately, the registration used a fake name and an offshore company's details, which made the investigation difficult.
In the next step, I analyzed the website's source code. The code contained some references that helped me identify the content management system and programming languages used. Based on this information, I realized that the website creator was likely a beginner programmer who was using a free CMS.
Unfortunately, due to my own mistake, the scammers realized I was on their trail and tried to remove the website. But I was faster. Before they could do anything, I saved the entire content of the website. Among the saved data, I found an email address that the website owner used for contact.
Based on the email address I found, I managed to identify the scammer's identity. Through research on social media platforms and online forums, I gathered more information about them. Reverse image search sites were good companions in this case.
After collecting all the evidence, I filed a report with the police and the National Cyber Security Center. The authorities cooperated and launched an investigation, and the fake website was successfully taken down. Cooperation with the authorities wasn't entirely smooth either. As a new YouTuber without significant fame yet, I was initially met with distrust. They found it hard to believe that I could have conducted such a deep investigation on my own. However, when I showed them my evidence and explained my findings in detail, their attitude changed. Proceedings were initiated against the scammer for fraud and violation of personal data protection.
I will not share the details of the HOST provider, but such a procedure personally outrages me. If someone reports that their services are being used for theft and fraud, they should take appropriate action in the matter. This did not happen here; in fact, they essentially wanted to hand over my data to the scammers.
During the investigation, I had several tools at my disposal:
The Kremlin helped me map the infrastructure behind the website (this is a specific security system for my own protection).
The VPN software ensured my anonymity, allowing me to work with peace of mind without fear of consequences.
My security systems protected my own devices from outsiders.
And with the IP tools, I managed to trace the site back to its source.
After the successful report and the takedown of the website, I became even more committed to helping others. I realized that with my technological knowledge, I could do a lot to make the internet safer. Since then, I have been constantly developing my skills and trying to educate as many people as possible about the dangers and possibilities of cybersecurity.
What impact did this case have on me?
It strengthened my self-confidence: I realized that I am capable of great things and that with perseverance, I can achieve my goals.
It deepened my technological knowledge: During the case, I became familiar with many new tools and methods that I have used ever since.
It encouraged social responsibility: I realized that I can help others with my knowledge and that I can play an important role in creating a safer digital world.
It motivated me to learn continuously: Cybercrime is constantly evolving, so it's important to always be up-to-date with new threats.
What did I learn from this case?
Caution is never enough: There are many dangers lurking on the internet, so always be careful when clicking on unknown links or providing personal information.
Knowledge is power: With technological knowledge, we are able to protect ourselves and others from cybercriminals.
The power of cooperation: Thanks to cooperation with the authorities, we managed to get the fraudulent website taken down.
Be careful with unknown links and emails!
Use strong passwords and update them regularly!
Keep the security software on your devices up to date!
Be aware of the latest cybersecurity threats!
If you notice any suspicious activity, report it to the authorities!
Some of the information was protected with bitdefender and also the software was a big protect to myself.(and some information can be recieved as well)
Im really happy to use the VPN as well from Bitdefender
What you think about it?
You can find me in parteon as well
And promotion: 10% 613BD
