Share via

Got hacked by a rambler.ru account

Reported
Anonymous
2023-02-08T07:58:18+00:00

My microsoft account got hacked by a rambler.ru account and replaced my original email with theirs. that email address is [PII Removed] i requested a security info change from that email address back to my own but now my account is locked for two days and i'm not sure if requesting a security info change alone would be enough to keep the hacker from my account.

from my understanding too, I believe that they originally got to my microsoft account by hacking my email credentials.

Windows for home | Windows 11 | Security and privacy

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.

0 comments

Answer accepted by question author

  1. DaveM121 876.6K Reputation points Independent Advisor
    2023-02-08T08:33:39+00:00

    Hi Keiran,

    I am Dave, I will help you with this.

    Usually when a hacker changes the Email on a Microsoft Account, then that account cannot be recovered, it is lost and there is no method to recover the account.

    If you have been luck enough to be able to recover your account, when the 2 day time period has lapsed, it would be best to ensure you have a very strong password on your account and enable 2 factor authentication on your account to ensure the hacker no longer can access your account.

    0 comments

Answer accepted by question author

  1. Don Varnau 19,785 Reputation points Volunteer Moderator
    2023-12-31T15:50:36+00:00

    Jo Leal wrote:

    i got hacked and i need your help

    1. If the hacker/hijacker has changed the email address by creating an alias then deleting your address, now a non-primary alias, you will not be able to recover this account.

    Check for that by trying to sign-in with the original address https://outlook.live.com If you are told that the account doesn't exist, you're out of luck.

    1. Relevant article #1

    https://support.microsoft.com/en-us/account-billing/how-to-recover-a-hacked-or-compromised-microsoft-account-24ca907d-bcdf-a44b-4656-47f0cd89c245 

    1. Article #2

    https://support.microsoft.com/en-us/account-billing/help-with-the-microsoft-account-recovery-form-b19c02d1-a782-dee6-93c3-dc8113b20c42 

    4. And... since people ask...

    Microsoft Support contacted via phone or chat won't be able to help you with this.

    In this article https://support.microsoft.com/en-us/account-billing/contacting-support-for-a-microsoft-account-bb65aa6a-9135-31df-0b36-d6318d6f4e0f 

    is the warning that

    "Important:****To protect your account and its contents, our support agents and advocates are not allowed to send password reset links or access and change account details."

    Don

    0 comments

148 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2023-06-28T22:19:29+00:00

    Hello, I'm joining you in this hell of a situation: my account has been hacked by a Russian email and now I'm faced with Microsoft's incompetence! I'm demoralized when I see the scale of all this and the number of victims. Today I've taken every possible step, but Microsoft refuses to help me, even though they've recognized me as the owner of the account. My only hope today is to ask for the account to be unlocked and try to change the security information without the attacker cancelling the request.
    If anyone comes up with a real solution, please contact me.

    0 comments
  2. Anonymous
    2023-06-22T15:26:11+00:00

    Which email hacked it? My friend got hacked by the same rumbler .ru mail. It was s***@rumber .ru

    i got hacked by hrhhjuykyu.rambler.ru

    0 comments
  3. Anonymous
    2023-04-19T11:51:04+00:00

    Hello,

    Just want to share, my account has been hijacked and I managed to capture it back.

    I have 1 desktop PC, 1 laptop, and a mobile phone. All logged in to my microsoft account in Windows, OneDrive, Microsoft Office in Edge browser.

    My MS account linked to my gmail account so I will be notified by email if there's any activity within my MS account.

    This is how I found out and my step-by-step to capture it back.

    1. I noticed this morning that I've been signed out from my MS account in my phone
    2. Read the notification emails from Gmail. It told me this:
      1. My MS password changed
      2. Added ******@rambler.ru as primary email
      3. Removed added security measures (phone, 2FA, etc)
      4. Deleted my gmail address
    3. Open my laptop, open outlook.com using Firefox to access my email. I cannot login, it said "there's no account with that name". First, I thought my account has gone :(
    4. I noticed in my laptop, that my OneDrive still logged in. Opened Edge, hope I still can logged in to my account through MS Office.
    5. Browser asked for verification. Fortunately, there's still option to verified myself through Windows login pin/Windows Hello.
    6. Successfully verified using windows PIN. go straight to MS account security settings, and changed:
      1. add back my outlook email
      2. add 2FA verification
      3. create new recovery code
      4. change password
    7. Remove devices logged in except my laptop.

    For other security measures, I did this:

    1. It seems my desktop PC had malware that stole/copy my login credentials from my browser (example malware: search for "bloody stealer"). So I disconnected my desktop PC from network, and reinstall it.
    2. Changed all my email passwords (have 2 other active emails). Check any activity within each account and remove any suspicious logins. I found my Yahoo mail also has been compromised, but luckily the hacker didn't try to change my password or did anything.
    3. Removed apps & services that had been given access to my MS account.

    My takes:

    1. I got lucky I can still login via Windows on my laptop, and still allow me to verify my account via Windows Hello. I think it's a good idea to logged in several PC/browser that you had access/control to, so whenever your account hacked, you still have chance to login from alternative pc.
    2. Beware of shady roblox/minecraft additional app/browser extensions. I suspect my PC compromised because of that (my son plays both games)
    3. Take notice any suspicious behavior. Before this happened, last month my google account on my desktop PC suddenly logged out because google suspect suspicious activity from my desktop PC. I scanned my PC but cannot find anything. It seems the malware still there..
    4. Turn on additional ways to sign in or verify your account wherever possible (email confirmation, 2FA, windows hello, recovery code, etc).
    5. My son use my desktop PC to play games. But I don't create separate login for him. This is why malware can install easily. Will separate the login from now on.
    6. If you got hacked, your first attempt should be how to get login to your account using another verification method. But don't forget, your account login name has been changed to the hacker's email. So use it instead of your email.

    Hope this helps.

    0 comments