Any hacker will find it difficult to hack you if you follow certain rules. No matter how smart you are, hackers find a way to steal your data like bank details. How can you be away from the hackers?
If you search ” hacked password Pastebin “, you will get shocking results. You may also see hacked account details of today as well. There is also a probability that a hacker is trying to hack into an account while this article is being written. The aim of this post is to make you aware that what are the bad practices you follow and what you should always follow to be on safer side. Let us start one by one.
1. Password strength
People always try to keep a password which is as simple as their birthdays. In most cases, it’s easier to get birthday information from anyone. Hacker will casually ask your birthday while chatting with you and in most cases, you tell your correct birthday. It is advisable to keep your Facebook birthday information secret. You can’t trust friends as well because you may be having hundreds of friends. You can’t know each of them and what evil thoughts are there in their minds. So always keep a password which is very hard to guess. Example: [email protected]$
In the above example, we have incorporated everything a strong password needs. You can figure out that we have included 2 capital alphabets, 1 small alphabet, 5 numbers and two special characters. You should make a habit of keeping passwords like above to counter “BRUTE FORCE ATTACKS“. Also, these type of passwords is impossible to guess.
2. Sofware Downloads
If you want paid-software and that too for free, you will probably google it with a keyword called “Cracked“. In most cases, you will land on a website with full of malware and trojans. Instead of using cracked software, you should use the trial version of a software if you want it badly. The hacker code the pirated software in such a way that even paid antivirus fails to detect any infections in the file.
What if you use only free software for your everyday needs? Are you completely safe? The answer is ‘no’. Even if you download a free software from a trusted site like bittorrent.com, you may risk yourself in some way. We downloaded the BitTorrent client from the official website and guess what? After we uploaded the file on Virustotal, ESET-NOD32 detected potentially unwanted web component.
As you can see an antivirus has flagged the Exe file. It may be a false positive but still, we were not sure about this file and we decided to try another torrent client in our case.
So make a habit of scanning any software you download from the internet. If your antivirus automatically scans a downloaded file then probably it will detect any malware/suspicious code inside the software. But assuming that you don’t use paid antivirus or the free one(we use Avira free antivirus) which scans a file downloaded from the internet, we recommend you always upload it on VirusTotal and check the file.
Suppose you downloaded any software from the internet. What should you do next? The answer is simple. Go to VirusTotal and click on “upload and scan file”.
How to use VirusTotal?
You may be having doubt that how much bandwidth it will take to upload the file on this website? It will take same bandwidth as the size of the file however in most cases, it will fetch the hashes of the file (which will not consume any bandwidth) and show you the scan result. The later is the most encountered case as someone must have scanned the particular file which you will try to scan. So hash of the file is already present on the VirusTotal’s server. In this case, your file will not be uploaded. Instead, directly the scan results will appear in front of you.
Why should you always consider using VirusTotal even if you have a professional antivirus installed?
A system can have just single antivirus installed however VirusTotal is backed by the best antiviruses to make sure the user gets accurate scan results. When a file is uploaded to VirusTotal, the databases of antiviruses is searched for the possible infections and thus you get better predictions about the safety of that particular file. On the other hand, the antivirus installed on your system will only scan its server for the possible threats. Hence you should always consider checking a file on VirusTotal before clicking the Install button of the software.
3. Internet Banking
Almost all the banks provide the internet banking with two-step authentication method( your password and one-time password which you get on your mobile). However many users ignore this safety measure and for instant checkout, they disable two-step authentication which is a blunder. Even if a hacker gets your internet banking password it’s fairly difficult to use it when the two-step authentication feature is on. Unless and until he has a physical access to your mobile(or hacked your phone as well which is a rare case), he can’t steal your money. So remember that two-step security measure is for you and you should never ever disable the “OTP” option for faster checkout or whatever the reason may be.
Secondly, you should avoid logins in public places like a cyber cafe. If you have bad luck, you may get a system with keylogger software(software to record keystrokes). The cyber owner or just a random person who wants to get stranger’s password might have installed it. Whatever the case may be, you are never 100 % safe in such places.
4. Facebook and other social sites
While logging in to Facebook you will probably get a popup in chrome or similar browsers to save the password for future logins. This feature is handy in case the system is used by just you and no one else. However, this is not the case every time. You may be using your colleague laptop for checking email or your Facebook feeds and accidentally press ok option. Bang! you just gave easy access to your account and anyone can gather your password by just opening settings of the browser. In case of Chrome, all saved passwords can be found in settings>Advanced>Passwords and forms>Manage Passwords. It’s as simple as that. So avoid logins on someone’s device and even if you do it, make sure you don’t hit the ‘ok’ button in case browser asks you to save the password for future.
If a hacker is your real enemy then he/she may trick you to login to your social account to change the passwords. And when you enter your credentials and hit that submit button, you will land on a page showing “404 Not Found” or “500 – Internal Server Error” or similar message. Basically, the site you logged in may be the cloned website which will look like same as the one which you normally see. It will be really hard to spot the cloned website unless you pay attention to the URL.
So how can a hacker provoke you to change the password?
The answer is fairly simple, just by sending you an email saying that this email is sent to you by our support team to secure your account. The hacker may ask you to check spam folder if you don’t get the password change link in primary folder. And you will probably check the spam folder and click on the link to set the password. The password will not change however your password will be in hands of the hacker. If hacker will be smart enough he will attach logo of the company in every possible part of the email to make you feel that the email is genuine. Therefore you should never click on any unknown link to reset your password.
WhatsApp has brought a feature called WhatsApp Web which helps to be connected with your dear ones while working on your laptop/PC. This feature is very useful for those who hate picking up their phones everytime a new WhatsApp message pops in. However, if someone has physical access to your phone he/she can easily read your all the past and the new messages by pointing your phone to a computer/mobile screen with WhatsApp web page open tab to capture the code. Someone can borrow your phone by making an excuse to call somebody. That person can easily read your messages. To be sure that nobody is reading your messages like this you should always apply app lock to your WhatsApp. In general, you should always check the notifications on your phone whenever you give your phone to someone. If any WhatsApp web session is active you will see the notification like this :
So if you have not turned it on, immediately close it by tapping on the notification. Next, click on log out from all computers.
Being safe online is in your hands. A small mistake can make you suffer a lot. So while you are online, you should never commit above-mentioned mistakes and you will never encounter any weird situations which may arise from being hacked. Comment down below and let us know if you ever got hacked and share this post with everyone you care about. The more awareness, lesser will be the loss.