HOW DO HACKERS STEAL PASSWORDS?

In the age of technology, password has become mandatory. The system of keeping passwords from the phone we use to the door of the house has already started. As important as a password is, it is also important to protect it.

Passwords are the most important way to be secure in the digital world. Lately, cryptography and biometric technologies have become widely available. It is widely used as it plays an important role in issues of privacy and security. Most of the time we keep passwords that are easy or predictable so that we can easily remember the passwords we keep. In some cases, we are naming objects around us as passwords.

Passwords are easier to remember when you need them. But the consequences are far worse than we imagined. In some cases, it is possible that the password was leaked due to our unintentional actions or negligence. Sometimes children open the spam link when they unknowingly use the phone. Even in this case, the password is being leaked. The leaked passwords are being used by hackers for various purposes.

Some parents keep strict passwords to keep their children out of reach. Because of that, children can be kept away from using the phone, and also the phone can be prevented from being hacked. If you are an ordinary person, not an acquaintance, rich, artist, then you may be thinking what is the use of my account for someone or why will it be hacked.

However, the hacker may need anyone account or someone close to you may be trying to misuse your account. So it is better to be vigilant in time. How and when hackers hack your passwords is unpredictable. There are a number of styles that hackers often use to hack into other people's passwords.

Phishing Attack

One of the most commonly used methods to steal passwords for various cyber attacks is phishing. Even though the spelling is different, the word phishing on the internet has the same meaning as fishing. It contains fishing hackers and fish can be any of us. They focus on our needs and send us similar feedback via email. We are easily drawn to that diet and lose our vital data. Hackers spread spam in a user's email by creating an interface similar to the one used by the user. They send emails that look like they were sent from Facebook, Twitter, Google or any important bank. Where some of the offers may have been said to have been verified due to account problems or the link may have been sent in writing. Click on the link to login ID and verify the ID. Ordinary people, who are not familiar with this style, can log in thinking of normal work. After logging in, the website opens, which is exactly what they mentioned in the email for what purpose. Then all the details of the user are with the hacker. The easiest way to avoid this is to never use or mention your email except on the official site. Don't let another unwanted email flow. Before checking, confirm that the email came from an official location. Only open the link if authentication is confirmed. This way you can avoid phishing attacks.

Social Engineering

Although social engineering is declining in the world of hacking, it cannot be said that hackers will not use this technology for their own purposes. In particular, social engineering means that the hacker takes personal information or access to the user by spreading the illusion that he is a legal person. They ask for the user's password to access the network, take personal information saying they will solve the technical problem. To avoid this, do not share your personal information or any password with anyone just by phone, SMS or link.

Malware

Malware is software designed to steal personal data. It's a piece of software that, if you come into someone's system, can take control of the whole system and make it worse. If you are on an unofficial website, malware is more likely to enter your system. Malware can often come to your system when downloading games or videos, downloading software, or visiting unofficial websites. To avoid this, download the software or video from the official website. Don't open unnecessary websites.

Brute Force Attack

The whole system of hacking to gain access to the system, in which the password is guessed, is called 'Brute Force Attack'. For this, the hacker will guess the password and gain access to your account through the clues provided by you without knowing it. Most people use the same password on many other accounts. Taking advantage of this, the hacker captures the entire account with the same password. There is another method related to this, reverse brute force attack. This allows hackers to steal passwords by guessing some common passwords.

Dictionary Attack

Dictionary attack is like a brute force attack. This method is done through any software. If a user does not change the default password, Dictionary Attack may crack the default password. At the same time it can guess the password by linking any words in dictionary to each other. For this the user has to change the default password suggested by the system of any account. It is best not to have a password that is in dictionary.

Mask Attack

Dictionary Attack uses as many words and sentences as possible, while 'Mask Attack' is even more special. It usually involves guessing numbers or letters. If the hacker finds out that the password of that account starts with the number, they will guess the same way and find out the password of the user. Mask Attack is based on how long the password is, how the characters in it are matched, how the characters are combined, big or small, which character is repeated many times.

Rainbow Table Attack

Rainbow Table Attack is a type of offline hacking system. It encrypts passwords stored somewhere in the system using hashes. This makes it impossible to determine the main password without the corresponding hash. Rainbow Table Attack, which provides encrypted passwords for stored plain text versions associated with hash algorithms, is ahead of other styles of attack hacking. They compare the available passwords, create passwords in the company's system and launch an attack. This makes hackers' priority first, as it is faster and easier than other methods.

Network Analyzer

Network Analyzer is a tool that allows hackers to view and intercept data packets sent over the network. They use plain text passwords in it. Hackers use this type of hacking to gain physical access to malware or network switches. It does not depend on system vulnerabilities or network bugs. Because the internal network is enough to do all this. Network Analyzer is one of the most widely used methods for hacking in the first place.

Spidering

Spiderimg is a medium like phishing and social engineering. But hackers have to do more. Spidering is one of the means by which hackers use their intelligence to track down targets in order to obtain evidence related to their activities. Spidering is considered to be somewhat more successful than others, as its use results in faster result. It is up to the hackers to determine how they use the spidering according to their target. For example, if hackers are targeting large companies, then hackers are going to trap them in everything they need. As a result, they can easily take over the security system of a large company. Similarly, companies keep passwords that match their business so that their employees can easily remember them. Hackers take full advantage of this.

Offline Cracking

It is a mistake to assume that all hacking is from the Internet. Some hacking is done without any internet. This method works like a rainbow table attack. Offline hacking is the process of decrypting passwords by making a complete list of hashes taken from some data breaches. Despite the restrictions, hackers are able to detect passwords and use them without any risk.

Seeing Password Hiding Behind

In some cases, hackers are pursuing their target users. Someone may be monitoring your activities on your phone, computer or tablet. This could lead to the person misusing your data or information. So if you have to use your phone, laptop or tablet in a public place, go in private.

To Guess

Even guessing, many passwords can be stolen. Hackers can guess your password from your interests, your father, mother, husband, wife, children's name, your school or work place, your mobile number, office number etc.

So by being careful in all these things while keeping the password, can prevent from hackers.