A few months ago someone connected to my laptop via the internet and recorded all sound that reached the mic. I was glued to my laptop designing an out-of-town friend's wedding invitation while chatting to her on a normal landline speaker phone for about an hour discussing the layout and other stuff...
Meantime a friend of my b/f had accessed my laptop via the internet and recorded our entire conversation. I know many questions here are from new users, but I've been using pc's since DOS (remember edlin, anyone?) and the net since it was available! Because of the nature of my work, no one else has ever used my laptop plus it has too many passwords, from BIOS to Windows for anyone to "just quickly" start it up and install something, so we can preclude anyone else having physically accessed it to install anything. I only found out about this a few days after it happened and in that time I'd reformatted and reinstalled, so couldn't scan to find out HOW he'd done it
Will fill 2 pages if I go into detail, so just the facts: I heard my conversation with my friend replayed on a cd in wav format. Due to the sound levels of voice, keys and laptop sounds, it was definitely recorded thru the laptop mic.
The guy who hacked me is no longer a friend and wont tell us anything. I investigated all possibilities (other people, normal bugging etc) and am 120% sure they can be disregarded, so that leaves remote eavesdropping.
- My b/f's friend had my IP because I was testing something and asked him to ping me, so gave him my IP address the day before
- I have a 3G card in my laptop to access the internet, running XP professional SP 2 with all security updates
- my firewall was off at the time (yes, stupid me!).
- I've never told anyone or written my password down so he would not have had my username/password
- Mine is the only user account on the laptop (guest etc disabled)
- McAfee was on with Access Protection, Unwanted Programs, On-Access Scanner all enabled.
- I am fanatical about my laptop privacy - have a BIOS password etc.
And just to repeat myself - nobody else has access to my laptop...
I've chatted to the IT guys at my office and a couple of other network-knowledgeable people but no one can help. The closest we could get was something like VRS Sound Recorder/pc spy SW being deployed remotely but even with remote deployment, it seems the "target" has to click on a file sent to them - could be disguised as a jpg/txt or anything in order to activate it - is this true or is there SW out there that can access your mic in stealth mode?
My Outlook is set not to show pictures etc and I NEVER click unknown attachments. I use my email 99% for work and in the preceding weeks did not receive any email from anyone even remotely connected to the guy that did this, nor my b/f. If any email from unknown senders makes it through my rules, I don't read it, simply delete it.
I would really appreciate any info you have so I know what to keep an eye out for in future or what other protection to install. Perhaps you could point me to some websites with info?
Many many thanks in advance for any ideas you may have!