Originally Posted by
sonatine
i feel like ive told this story before.. but:
i have a friend. gov infosec cat. does blue team (defensive work) for a high profile agency. two types of people target his networks; scrubs, and nation-state level actors. scrubs, they often arent hard to rumble. often they end up bragging about how they rooted a honeypot on a forum and thats pretty much a wrap for them.
anyway my friend, sometimes he sends 'the van' to the scrubs house right, but other times he just slides into their dms like 'yeah i got you' and then he will basically flip them with kindness/praise and the ever present low key threat that they spend 7 years in a concrete box.
he told me about one dude he flipped who gave him a login and password to a web site, and when he logged in he was confronted with thousands (literally thousands) of live feeds from laptop cameras. and this kid he flipped, he was a nobody. he was one out of a small crew of total absolute burgers. and there are hundreds of crews of total burgers operating at any given moment.
so are you asking me if i believe you got popped? i 100% believe it. i generally assume im popped at all times. its not far fetched to me.
but, to borrow a phrase from the vietnam war, my point here is that sometimes the bullet has your name on it, but usually its addressed to 'to whom it may concern'.
now that said, if you want to go full game theory and fold spear phishing into the equation, the first people to go after if you want to up your numbers are the ones who are most likely to swallow the bait. and according to all available data, trumpers absolutely fucking love bait. by all appearances most of them dont even object to the hooks.
so youre on a poker forum, meaning you likely play poker online. meaning anyone screen capping you can turn an easy profit just by sitting at your table. so right off the bat, on the victim index, youre towards the top of the list in terms of effort/reward equity.
add on your political views and general willingness to aggressively engage with people politically online and you start looking really, really good as far as target profiles go.
so make no mistake; i can easily imagine you getting hacked. i can imagine anyone at all getting hacked, myself included, but i also think you kinda hung a target around your own neck, to an extent?
so yeah i mean, maybe wipe everything, reinstall from trusted medium, or dont. but as far as the histrionics go, probably you should shut it down or make your case public in the interests of helping others avoid your plight. thats my hot take.