dark
Hand-Picked Top-Read Stories
Trending Tags

How Attackers Actually “Hack Accounts” Online and How to Protect Yourself

People talk about their online accounts being “hacked,” but how exactly does this hacking happen? The reality is that accounts are hacked in fairly simple ways — attackers don’t use black magic.

Knowledge is power. Understanding how accounts are actually compromised can help you secure your accounts and prevent your passwords from being “hacked” in the first place.

Reusing Passwords, Especially Leaked Ones

Many people — maybe even most people — reuse passwords for different accounts. Some people may even use the same password for every account they use. This is extremely insecure. Many websites — even big, well-known ones like LinkedIn and eHarmony — have had their password databases leaked over the past few years. Databases of leaked passwords along with usernames and email addresses are readily accessible online. Attackers can try these email address, username, and passwords combinations on other websites and gain access to many accounts.

Reusing a password for your email account puts you even more at risk, as your email account could be used to reset all your other passwords if an attacker gained access to it.

However good you are at securing your passwords, you can’t control how well the services you use secure your passwords. If you reuse passwords and one company slips up, all your accounts will be at risk. You should use different passwords everywhere — a password manager can help with this.

Keyloggers

Keyloggers are malicious pieces of software that can run in the background, logging every key stroke you make. They’re often used to capture sensitive data like credit card numbers, online banking passwords, and other account credentials. They then send this data to an attacker over the Internet.

Such malware can arrive via exploits — for example, if you’re using an outdated version of Java, as most computers on the Internet are, you can be compromised through a Java applet on a web page. However, they can also arrive disguised in other software. For example, you may download a third-party tool for an online game. The tool may be malicious, capturing your game password and sending it to the attacker over the Internet.

Use a decent antivirus program, keep your software updated, and avoid downloading untrustworthy software.

Social Engineering

Attackers also commonly use social engineering tricks to access your accounts. Phishing is a commonly known form of social engineering — essentially, the attacker impersonates someone and asks for your password. Some users hand their passwords over readily. Here are some examples of social engineering:

  • You receive an email that claims to be from your bank, directing you to a fake bank website with a very similar-looking URL and asking you to fill in your password.
  • You receive a message on Facebook or any other social website from a user that claims to be an official Facebook account, asking you to send your password to authenticate yourself.
  • You visit a website that promises to give you something valuable, such as free games on Steam or free gold in World of Warcraft. To get this fake reward, the website requires your username and password for the service.

Be careful about who you give your password to — don’t click links in emails and go to your bank’s website, don’t give away your password to anyone who contacts you and requests it, and don’t give your account credentials to untrustworthy websites, especially ones that appear too good to be true.

Answering Security Questions

Passwords can often be reset by answering security questions. Security questions are generally incredibly weak — often things like “Where were you born?”, “What high school did you go to?”, and “What was your mother’s maiden name?”. It’s often very easy to find this information on publicly-accessible social networking sites, and most normal people would tell you what high school they went to if they were asked. With this easy-to-get information, attackers can often reset passwords and gain access to accounts.

Ideally, you should use security questions with answers that aren’t easily discovered or guessed. Websites should also prevent people from gaining access to an account just because they know the answers to a few security questions, and some do — but some still don’t.

Email Account and Password Resets

If an attacker uses any of the above methods to gain access to your email accounts, you’re in bigger trouble. Your email account generally functions as your main account online. All other accounts you use are linked to it, and anyone with access to the email account could use it to reset your passwords on any number of sites you registered at with the email address.

For this reason, you should secure your email account as much as possible. It’s especially important to use a unique password for it and guard it carefully.

What Password “Hacking” Isn’t

Most people likely imagine attackers trying every single possible password to log into their online account. This isn’t happening. If you tried to log into someone’s online account and continued guessing passwords, you would be slowed down and prevented from trying more than a handful of passwords.

If an attacker was capable of getting into an online account just by guessing passwords, it’s likely that the password was something obvious that could be guessed on the first few tries, such as “password” or the name of the person’s pet.

Attackers could only use such brute-force methods if they had local access to your data — for example, let’s say you were storing an encrypted file in your Dropbox account and attackers gained access to it and downloaded the encrypted file. They could then try to brute-force the encryption, essentially trying every single password combination until one works.

RELATED: What is Typosquatting and How Do Scammers Use it?

People who say their accounts have been “hacked” are likely guilty of re-using passwords, installing a key logger, or giving their credentials to an attacker after social engineering tricks. They may also have been compromised as a result of easily guessed security questions.

If you take proper security precautions, it won’t be easy to “hack” your accounts. Using two-factor authentication can help, too — an attacker will need more than just your password to get in.

Image Credit: Robbert van der Steeg on Flickr, asenat on Flickr

Note: This article have been indexed to our site. We do not claim legitimacy, ownership or copyright of any of the content above. To see the article at original source Click Here

Beef Tallow For Skin - Whipped Tallow Balm with Organic Jojoba Oil (Unscented/Herb-Infused), Grass Fed Beef Tallow Face Moisturizer for Eczema, Baby, Lip Balm - Lotion For Extremely Dry Skin
4.6 out of 5 stars(788)
$29.99 (as of March 9, 2025 20:21 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
ALOCEO Small Trash Bag Holder with Bamboo Top, Wall Mount Stackable Standard Garbage Bag Dispenser for Laundry Room Organization and Storage
4.5 out of 5 stars(167)
$20.99 (as of March 9, 2025 19:46 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Amazon Fire HD 10 tablet (newest model) built for relaxation, 10.1" vibrant Full HD screen, octa-core processor, 3 GB RAM, 32 GB, Black
4.5 out of 5 stars(22630)
$139.99 (as of March 9, 2025 20:21 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Pink Floyd At Pompeii - MCMLXXII
5.0 out of 5 stars(1)
$40.99 (as of March 9, 2025 19:46 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Boytond Ultra Open Ear Earbuds - Bone Conduction Earbuds with Wireless Bluetooth, Clip on Headphones, Over-The-Ear Headphones Comfortable for Fitness, Running, Gym Workouts, Designed for Small Ears
4.0 out of 5 stars(1227)
$26.87 (as of March 9, 2025 19:44 GMT +00:00 - More infoProduct prices and availability are accurate as of the date/time indicated and are subject to change. Any price and availability information displayed on [relevant Amazon Site(s), as applicable] at the time of purchase will apply to the purchase of this product.)
Index Of News Author
Related Posts
Ancient Transylvanian turtle survived the extinction of the dinosaurs thumbnail

Ancient Transylvanian turtle survived the extinction of the dinosaurs

Home News The fossilized plastron (left) and carapace (right) of the newly discovered turtle's shell. (Image credit: University of Tübingen)A 70 million-year-old fossil unearthed in Transylvania is a newfound species of freshwater turtle that likely survived the extinction event that wiped out the nonavian dinosaurs.  Researchers initially found the reptilian fossil at a site called…
March 7, 2022
Read More
GM and Ford Have Bent the Knee to Tesla Supercharging thumbnail

GM and Ford Have Bent the Knee to Tesla Supercharging

GM, like Ford, will begin installing a charging port used by Tesla, known as NACS, instead of the current industry-standard CCS, in its EVs starting in 2025. Under the deal, GM vehicles will be able to access 12,000 of Tesla’s fast chargers using an adapter and the Detroit automaker’s EV charging app, starting next year.
June 8, 2023
Read More
Could Fido be our best hope to reverse aging in humans? thumbnail

Could Fido be our best hope to reverse aging in humans?

Published January 24, 202313 min readStephanie Abraham, a dog breeder and dog-show judge in Connecticut, lives with eight laid-back Cavalier King Charles Spaniels and a mischievous one named Ace. “He’s my only Cavalier who gets into trouble!” she says. The nine-year-old 18-pounder, with rich chestnut-color markings and large, soulful eyes, likes to leap on a
January 24, 2023
Read More
Beyond the Visible Universe: New Research Reveals How Gravity Influences the Quantum Realm thumbnail

Beyond the Visible Universe: New Research Reveals How Gravity Influences the Quantum Realm

Nuclear physicists have discovered gravity’s profound influence on the quantum scale, revealing the strong force’s distribution within protons for the first time. This groundbreaking research, combining historical theoretical insights with modern experimental data, offers unprecedented understanding of the proton’s internal dynamics and sets the stage for future discoveries in nuclear science.Nuclear physicists at Jefferson Lab
February 8, 2024
Read More
Sweet Security Introduces Patent-Pending LLM-Powered Detection Engine, Reducing Cloud Detection Noise to 0.04% thumbnail

Sweet Security Introduces Patent-Pending LLM-Powered Detection Engine, Reducing Cloud Detection Noise to 0.04%

Tel Aviv, Israel, January 15th, 2025, CyberNewsWire Sweet Security, a leader in cloud runtime detection and response, today announced the launch of its groundbreaking patent-pending Large Language Model (LLM)-powered cloud detection engine. This innovation enhances Sweet’s unified detection and response solution, enabling it to reduce cloud detection noise to an unprecedented 0.04%. Sweet uses advanced
January 15, 2025
Read More
Index Of News