In this article I'll show you these, and a couple other ways that hackers (and even regular folks) can hack into someone's Facebook account. But don't worry, I'll also show you how to prevent it from happening to you.
Reset the Password
Use a Keylogger
Phishing
Stealing Cookies
Method
1: Reset the Password
The easiest way to "hack"
into someone's Facebook is through resetting the password. This could be easier
done by people who are friends with the person they're trying to hack.
- The first step would be to get your friend's Facebook email login. If you don't already know it, try looking on their Facebook page in the Contact Info section.
- Next, click on Forgotten your password? and type in the victim's email. Their account should come up. Click This is my account.
- It will ask if you would like to reset the password via the victim's emails. This doesn't help, so press No longer have access to these?
- It will now ask How can we reach you? Type in an email that you have that also isn't linked to any other Facebook account.
- It will now ask you a question. If you're close friends with the victim, that's great. If you don't know too much about them, make an educated guess. If you figure it out, you can change the password. Now you have to wait 24 hours to login to their account.
It will send them passwords, which you may ask them for, and then type into the next page. You can either create three to five fake Facebook accounts and add your friend (especially if they just add anyone), or you can choose three to five close friends of yours that would be willing to give you the password.
How to Protect Yourself
- Use an email address specifically for your Facebook and don't put that email address on your profile.
- When choosing a security question and answer, make it difficult. Make it so that no one can figure it out by simply going through your Facebook. No pet names, no anniversaries—not even third grade teacher's names. It's as easy as looking through a yearbook.
- Learn about recovering your account from friends. You can select the three friends you want the password sent to. That way you can protect yourself from a friend and other mutual friends ganging up on you to get into your account.
Method
2: Use a Keylogger
Software Keylogger
A software keylogger is a program
that can record each stroke on the keyboard that the user makes, most often
without their knowledge. The software has to be downloaded manually on the
victim's computer. It will automatically start capturing keystrokes as soon as
the computer is turned on and remain undetected in the background. The software
can be programmed to send you a summary of all the keystrokes via email.
Hardware Keylogger
These work the same way as the software
keylogger, except that a USB drive with the software needs to be connected to
the victim's computer. The USB drive will save a summary of the keystrokes, so
it's as simple as plugging it to your own computer and extracting the data. You
can look through Keelog for prices, but it's bit higher than
buying the software since you have the buy the USB drive with the program
already on it
How to Protect Yourself
- Use a firewall. Keyloggers usually send information through the internet, so a firewall will monitor your computer's online activity and sniff out anything suspicious.
- Install a password manager. Keyloggers can't steal what you don't type. Password mangers automatically fill out important forms without you having to type anything in.
- Update your software. Once a company knows of any exploits in their software, they work on an update. Stay behind and you could be susceptible.
- Change passwords. If you still don't feel protected, you can change your password bi-weekly. It may seem drastic, but it renders any information a hacker stole useless.
Method
3: Phishing
If you want to know how to do this,
follow the detailed instructions on my topic "Hack Facebook using Phishing Method". Users
are very careful now with logging into Facebook through other links, though, so
that only adds to this already difficult process.
How to Protect Yourself
- Don't click on links through email. If an email tells you to login to Facebook through a link, be wary. If you're still doubtful, go directly to the main website and login the way you always do.
- Phishing isn't only done through email. It can be any link on any website. Even ads that pop up can be malicious. Don't click on any sketchy looking links that ask for your information.
- Use an anti-virus like Norton or McAfee.
Method
4: Stealing Cookies
Cookies allow a website to store
information on a user's hard drive and later retrieve it. These cookies contain
important information that a hacker can sniff out and steal if they are on the
same Wi-Fi network as the victim. They don't actually get the login passwords,
but they can still access the victim's account.
Firesheep
is a Firefox add-on that sniffs web traffic on an open Wi-Fi connection. It
collects the cookies and stores them in a tab on the side of the browser.
From there, the hacker can click on
the saved cookies and access the victim's account, as long as the victim is
still logged in. Once the victim logs out, it is impossible for the hacker to
access the account.
How to Protect Yourself
- On Facebook, go to your Account Settings and check under Security. Make sure Secure Browsing is enabled. Firesheep can't sniff out cookies on HTTPS, so try to steer away from HTTP.
- Full time SSL. Use Firefox add-ons such as HTTPS-Everywhere or Force-TLS.
- Log off a website when you're done. Firesheep can't stay logged in to your account if you log off.
- Use only trustworthy Wi-Fi networks. A hacker can be sitting across from you at Starbucks and looking through your email without you knowing it.
- Use a VPN. These protect against any sidejacking no matter what website you're on.
Protecting
Yourself: Less Is More
Social networking websites are great
ways to stay connected with old friends and meet new people. Creating an event,
sending a birthday greeting and telling your parents you love them are all a
couple of clicks away.
Facebook isn't something you should
steer away from, but you do need to be aware of your surroundings and make
smart decisions about what you put up on your profile. The less information you
give out on Facebook for everyone to see, the more difficult you make it for
hackers.
No comments:
Post a Comment