When someone develops software, they usually add a subscription or license key to earn revenue and support further development. However, not all users can afford to purchase a license, so they often resort to using cracked versions. Hackers exploit this by injecting malicious code into software registry files to bypass the activation process. They also include malware that steals users’ personal information and sells it on the dark web. I always advise my users to avoid cracked software, but recently, I was also affected—my PC got hacked after I downloaded a cracked program.
A few days ago, I contacted a retired cartographer (who was my friend) to make a map for my new home. He was my friend and told me that he stopped making maps 10 years ago, but he could make one if I downloaded the AutoCAD software. I go through the trusted website and download it. The size was 3.5 GB, and the software was original. Then the cartographer came again to my home and said we cannot afford a license key, so download the crack for it. I went through Google but did not find anything like that. Then at last, I open YouTube and look for the creators who have installed it on their systems. Finally, I found a person who was cracking only for AutoCAD 2025. I downloaded it and tried to install, but as I clicked on the setup file, nothing happened. I delete it by saying, It is trash.
Also Check: Microsoft offering Extended Security Updates
All my Gmail Accounts Got Hacked
The next day, I woke up, opened my browser, and saw the message, “Verify your identity.” I was shocked when a red mark appeared on my Google account. I quickly changed my password and checked my other accounts. Then I realized the same issue had affected my other three Gmail accounts. I changed all their passwords, and thankfully, I was safe. However, later that night, while watching the Asia Cup 2025, I received a message from my webmail saying my password had been successfully changed. Moments later, I got the same message again for my subdomain.
Recovery
I immediately reset the passwords from my phone and reverted the changes made by the hacker. I carefully verified that he did not inject any malicious code. But I did not find it. The after some time I got message that someone from China try to access your Microsoft and X account but the 2 step authentication block it.
The next morning, I downloaded the Windows ISO file, made my USB drive bootable with Rufus, and installed a fresh copy after formatting my hard drive, as this was a Session hijacking, and my Windows Defender could not detect it. After a successful installation, I use MAS to activate my office and ensure security.
Securing My PC
To protect my credentials from theft, I added a Microsoft account to my Windows 10, set up a PIN, face, and Fingerprint. Then I turned on the Chrome feature that lets you autofill passwords after your authentication.
Conclusion
Now, my information is available on the Dark Web, and I am now under the radar of hackers; Cloudflare and Google have confirmed this. I was always turned on the 2-step verification to secure my Accounts. I recommend using the official tools to avoid any disturbances in the future. If your PC was also affected, let me know. I hope I can help you secure it.