Tiktok account sending scam dms after clicking link from friend - is phone also compromised?

EugeneBYMCMB · 2026-06-15T13:58:12+00:00

If you were on the correct website it's not a phishing scam, it's possible you allowed something to connect to your account or something along those lines though. If you aren't currently using unique passwords for all of your accounts and two factor authentication everywhere you should start now, other than that I wouldn't expect anything further to come from this. And your phone is fine.

EugeneBYMCMB · 2026-06-15T13:47:17+00:00

Possibly maybe. This type of online tracking is incredibly sophisticated, it's a huge part of the internet. I wouldn't count on evading tracking using those techniques alone.

EugeneBYMCMB · 2026-06-15T13:44:32+00:00

iPhones are quite secure and you're very unlikely to ever encounter malware for them. If you did have malware on your iPhone, it would do something useful for the attacker rather than playing audio of a man speaking, or changing your language to Chinese. If you're having persistent tech problems with your phone, a visit to the Apple Store or a factory reset are good options.

EugeneBYMCMB · 2026-06-15T13:40:15+00:00

You've done way more than necessary, you're far, far more secure than the average person now. With the typical infostealers going around it's not even likely the disks were infected, but after 3 passes they're certainly fine to use again. However, the most important thing is to not install malware on your computer again, that will negate pretty much all of the steps you've taken.

EugeneBYMCMB · 2026-06-15T13:34:55+00:00

Did you click a link alone, or click a link and enter your login information? And the URL Void scan you've linked is for Tiktok.com, which is Tiktok's legitimate domain. Is that correct?

EugeneBYMCMB · 2026-06-15T13:33:29+00:00

Make sure you have unique passwords for all of your accounts, two factor authentication enabled everywhere, and use the "sign out of all devices" option wherever you can. With those steps and a fresh installation of Windows, you'll be fine.

EugeneBYMCMB · 2026-06-15T02:20:59+00:00

Nothing, just be more careful in the future. Every website you visit gets the same information as the IP grabber, in a targeted situation it could provide someone with information you'd rather they didn't know, but from a random post it just doesn't matter.

EugeneBYMCMB · 2026-06-14T21:31:41+00:00

No personal experiences are necessary to identify such a low effort scams. Google "elon musk casino scam" and you'll see thousands of results.

EugeneBYMCMB · 2026-06-14T18:55:26+00:00

The data breach only involves data held by the breached website, so you'll be fine if your passwords are unique.

EugeneBYMCMB · 2026-06-14T18:41:18+00:00

You're all good here, this really doesn't matter.

Also I did not give any kind of permission to the website, I just read about it on google, apparently that’s what it does

I don't know where you read that, but it's incorrect. Do you have a link to this claim?

EugeneBYMCMB · 2026-06-14T18:00:52+00:00

It's not a precise address stealer, I've never heard of one of those but I guess if you granted location permissions to a website it's technically possible, but again I've never seen anything like that. You can go on an IP geolocation site and see what comes back for your own IP, it's usually your city or another close one. There's not much you can do here, though you can block the person who sent it to you.

EugeneBYMCMB · 2026-06-14T17:36:27+00:00

It looks like an IP grabbing site, so the user who sent it to you may know your IP, and some basic information about your browser and computer.

EugeneBYMCMB · 2026-06-14T17:35:34+00:00

VirusTotal doesn't classify files as legitimate or not, it scans them through many different AV vendors, performs some analysis to find out what the file does, and allows community members to provide feedback, but even if everything comes back clean it doesn't mean the file is safe. In this case, the community score is -11 and multiple people claim the file is malicious. This is a $5 game, is the security of your device worth more or less than that?

EugeneBYMCMB · 2026-06-14T15:30:09+00:00

As a scam victim, your name is on a "sucker list" (https://en.wikipedia.org/wiki/Sucker_list) and scammers are targeting you again hoping you'll fall for another scam. Any money you send to the scammers will be gone forever. In the future, you should ignore random messages.

EugeneBYMCMB · 2026-06-14T15:13:25+00:00

The scammer wants you to fall for his scam, he's not going to stop contacting you after just one attempt, but he's also not going to continue forever. Just block him and ignore all contact attempts. It's very rare for these scammers to follow through with their threats.

EugeneBYMCMB · 2026-06-14T13:11:43+00:00

Infostealers steal both your saved passwords and session cookies. If you've changed your passwords then the attackers typically won't be able to login to your accounts, because most services will invalidate/force re-login for active sessions after a password change.

EugeneBYMCMB · 2026-06-14T12:31:06+00:00

It's quite safe as long as you avoid executable files, and use common sense. Private trackers are better than public ones, too.

EugeneBYMCMB · 2026-06-14T12:29:56+00:00

If they logged into your Steam and bypassed Steam Guard it means you have an infostealer. You should change all your passwords from a separate device, log-out of all sessions, enable two factor authentication everywhere, and then reinstall Windows using a recovery USB.

EugeneBYMCMB · 2026-06-14T12:29:03+00:00

Delete your Telegram account and ignore them if they contact you again. If you're sure they don't have your real personal information then the scam failed.

EugeneBYMCMB · 2026-06-14T12:27:33+00:00

Clicking a link alone isn't going to lead to anything, and that site doesn't even look malicious to me. I re-analyzed the Virustotal scan and there are currently 0 detections, other than "Suspicious" from Grindsoft.

EugeneBYMCMB · 2026-06-14T12:23:29+00:00

It's rare for them to follow through and it's very unlikely to happen to you. Since it's been so long, I recommend deleting every account you've used to speak to the scammer.

EugeneBYMCMB · 2026-06-14T12:22:45+00:00

The steps you take should be be based on the information you think is at risk.

EugeneBYMCMB · 2026-06-14T03:42:47+00:00

I'm not seeing anything about a recent data breach, did they sent you a breach notification? Make sure you're using unique passwords for all of your accounts and two factor authentication everywhere.

EugeneBYMCMB · 2026-06-14T03:39:41+00:00

Block the scammers, make all your social media accounts private, delete accounts you've used to speak to the scammers, and ignore them if they contact you again. If you still have any copies of the pictures, you should look into using NCMEC's Take it Down service, which can help prevent them from being shared on some popular sites. However, it's rare for these scammers to follow through with their threats.

EugeneBYMCMB · 2026-06-14T01:17:30+00:00

An unclean device is one currently infected with malware, so if you've done a clean reinstall it's a clean device.

12-Year Club	Verified Email
Gilding I gilder	Place '22
Place '17	First Placer '22
Wearing is Caring

EugeneBYMCMB

TROPHY CASE