At present, the demand for email is increasing rapidly. Among the online e-mail services, the most convenient is still Yahoo!. Mail. Yahoo is currently the most powerful mail provider, you can use 4Mb or 6Mb for mailboxes, you can use the service of chat (text, image, audio), not only can share files and use many more gadgets.
You can lose your beloved in just one minute. It's not just the public Internet access service that dangers you everywhere. Here are some ways you can lose your mailbox password:
Option 1: Use Key logger
Success level: almost 99%
If you receive or send messages at public Internet access points, you are likely to lose your password, which is the key logger. Key loggers are very modern, unlike the "prehistoric" loggers. No need to install on a machine, the size is very "modest", but these key loggers are good hackers steal passwords and then send the password steal to a predetermined address (key logger only record password and user name of yahoo messenger and send email to its owner for warning). Because key loggers can be easily integrated into any file on your computer, it's possible that when you run a game or program, you're already infected.
Tool implementation
A software key logger or spyware.
Prevention
You can use key logger prevention software or use Norton anti virus software (should update latest version) to detect key logger trojan located in a file. You can use key logger detection such as anti keylog, keylogg kill (you just need to access http://www.google.com Then type in the name of the program - & gt; Click Search to find, or go to http://download.com.com and type in the name of the program to download.
The easiest way is to open the login page, please drill open the first, open any editor (such as notepad), type a string of characters any character - & gt; then type the username & amp; your password - & gt; Continue typing in any sequence - & gt; then copy user name & amp; password to yahoo mail and paste user name and password. When using this method, the keylog only writes the text that contains the random strings you typed (of course, it will not know the real password) and the keystroke CTRL + V in the user field. name and password in the Yahoo Mail login page.
Method 2: Use the fake login page
Success rate: 45%
Open IE, you will see the homepage Yahoo Mail appears and now you just know the user name and password. After typing you click sign in but still not sign. You do not expect that in the Address bar at this time is not address http://mail.yahoo.com (although the interface is exactly the same as the Yahoo Mail interface). Actually this is just a link to a preconfigured HTML file located on the computer you are accessing.
Tool implementation
In this way, password thieves do not use software, do not require much knowledge about web programming. The hackers can use the send mail code (can be written in PHP, ASP, CGI ...) or use the form mail code available to send the password collected via e-mail. (Here is how to hide the method of execution because the purpose of the article is to guide the prevention).
Prevention
Do not type the user name and password from an existing IE window, or check the mail from any link (not just yahoo mail).
Option 3: Get password through yahoo messenger
Level of success: 85%
Yahoo Messenger is the most popular and popular chat program in Vietnam. Just sit with a hacker impersonating you could lose your password. Do not think people will ask your name or phone number, date of birth and based on that to guess the password. They only need to send you a small game file or a picture and you open it (even if I do not own you), then your password will be sent via chat nick because they file Sending you a Trojan hidden inside you do not know.
Tool implementation
A little program called Magic - PS (illustrated)
Once you are trapped, your Yahoo ID and password will be sent to the preconfigured nick. Example: Nick_cua_ban: This ID Hacked by: Magic-PS v1.41 === & gt; USER = nick_cua_ban PASS = password_cua_ban
Prevention
- No file from any stranger. If you have received the file, use it to scan it before using.
- Regularly update the latest yahoo messenger.
Note Not only the image file, but also a screen saver or an .exe, .com, .bat, .pif file can be used by hackers to install a trojan. .
Method 4: Get a password through a cookie
Success rate: 30%
Once you log in, the website automatically saves information to the cookie (the text file on your hard drive) so you can automatically log in next time.
Tools for implementation:
The cookie file translation program. Hackers will copy the cookie file on your machine and use the program to reverse it to select the necessary information.
Prevention
- Do not check Remember my ID on this computer to save your traces in the Cookie.
- When leaving the computer should delete cookies by: Open IE, click Tools, Internet Options, Gerneral, Delete Cookies. Finally, click OK
Method 5: Using Trojans
Level of success: 90%
After you open the web, a file will automatically run without your knowledge. You have already been infected with trojans. This Trojan will record everything you type on the keyboard - & gt; Then send to its owner (like key logger) (success rate up to 90%, 10% if you open the web or not!)
Tool implementation
Very simple: hackers just send you 1 web address. When you click on this website you will see that it is beautiful. If you have a trojan that is not good or not.
This is based on the IE bug. It works as follows: When you open a website, there will be code embedded in the web, which will automatically insert the file Notepad.exe. Then if you open Notepad.exe to execute then you are sure to be victim then.
Prevention
- Go to the website http://microsoft.com To find the latest service pack (bugfix) and then update.
- Do not open strange websites.
Here are some tips to avoid being used by bad guys to get your password:
- Do not open attachments of e-mails that the sender does not know
- With OE 6, you can tune in Tools / Options / Security This program does not allow opening or saving suspicious attachments.
- Outlook and Outlook Express support HTML E-Mails. This kind of e-mail is both beautiful and vivid, but it is also dangerous if you do not know how to prevent it. HTML E-Mails can contain scripts of type Script or ActiveX that can enter and destroy your system. In order to avoid possible threats, you should regularly update your E-Mail program, so you should set the Security Zone in the Tools / Options / Security section of IE to Restricted Sites Zone. Also can remove the ActiveX, Java features in Internet Explorer
- The txt file format will sometimes be changed to TXT.EXE. For example, a virus is named happy99.exe can be renamed happy99.txt.exe To trick the recipient, especially when the familiar extensions in the file name are hidden by Windows. Then you just see a file called happy99.txt and think that this TXT file is not dangerous.
- Before opening the attachments, check with an Antivirus software. This software must be updated regularly.
In addition to images such as JPG, BMP, GIF, or text as TXT, all files attached to email are potentially infected. Particularly noteworthy are files with PIF, EXE, COM, SCR, VBS.
Wish you success and ... do not lose your password.
For more information please contact:
Tran Tri Hien
E-mail: alexhien @ hotmail. com
