Aeit

I'm not using Chrome, and my browser doesn't have that option to save cards. I'm also not saving passwords to browser, I have paid app for that but sadly every browser have synced passwords. As far I understand it was able to steal tokens directly form discord as it also acts as a browser - at least in my knowledge. It doesn't even install - it just unpacks in AppData\Local\Discord\app-1.0.9003. You don't have to download it, login trough site redirects you to app also. Works like PWA in my opinion. The sad story about this is that stores way too many informations. It wasn't just active session token. They somehow managed to hack second account that was previously logged in. Because I don't have access to that second credit card. Its the only valid reasoning.

What do you mean by detection record?  <?xml version="1.0" encoding="utf-8" ?> <ESET> <LOG> <RECORD> <COLUMN NAME="Time">11/27/2021 7:40:09 PM</COLUMN> <COLUMN NAME="Scanner">Real-time file system protection</COLUMN> <COLUMN NAME="Object type">file</COLUMN> <COLUMN NAME="Object">C:\Users\Aeit\Downloads\Programs\python.py</COLUMN> <COLUMN NAME="Detection">Python/PSW.Agent.EF trojan</COLUMN> <COLUMN NAME="Action">cleaned by deleting</COLUMN> <COLUMN NAME="Information">Event occurred on a new file created by the application: C:\Users\Aeit\Downloads\Programs\Akatori.exe (705F624417E9FD4DEF290A33998E6DD82F68CCAB).</COLUMN> <COLUMN NAME="Hash">42BEC56C088D24281B3C3BD015D4CC28B93920B5</COLUMN> <COLUMN NAME="First seen here">11/27/2021 7:40:07 PM</COLUMN> </RECORD> </LOG> </ESET>

Hello, Today thanks to my stupidity I was a victim of a hack based on phyton. https://www.bleepingcomputer.com/news/security/pypi-packages-caught-stealing-credit-card-numbers-discord-tokens/ To make it short. There's a script that after launch grabs tokens, and it probably does a lot more if you enter the password that hacker send you. But thankfully ESET was fast enough and I realized something is off. File ended in quarantine. What it did was stealing my active session token from Discord App on windows gaining hackers full access to my account and bound credit card and they made gifts for hundreds of $$$ After changing password they lost access. But what bugs me the most is that they hacked also second Discord account of my brother. And also cleaned his bank account because of credit card bound to account. How's that even possible if it wasn't logged on? He might logged on my PC months ago that's all association he has with my PC. I run full scan on system and found nothing more. Is there something I can make to be sure I'm safe? I send file to analyse and full package trough support but wont post it here for obvious reasons.