Technology
I’m a tech expert still in shock at these ways hackers steal your password
You’ve probably heard it a million times, right? Keep your passwords strong, unique and under wraps. Don’t go clicking on shady links, and change your passwords like you change your socks. Oh, and let’s not forget about tucking them away in a cozy, encrypted password manager. The advice list is never-ending.
But here’s a kicker. What if you tick all those boxes and your password still ends up in the wrong hands? I know it sounds like we’re going overboard, but it’s a legitimate worry. How can you keep yourself safe from all the password-stealing scams out there and the damage that can potentially come with that?
The truth is, you can never keep yourself 100% safe from anything. But you can try your best. It starts by taking a step back and understanding the ways that your password, emails and usernames could be potentially compromised.
CLICK TO GET KURT’S FREE CYBERGUY NEWSLETTER WITH SECURITY ALERTS, QUICK VIDEO TIPS, TECH REVIEWS AND EASY HOW-TO’S TO MAKE YOU SMARTER
Illustration of locking up your devices (Kurt “CyberGuy” Knutsson)
The many ways hackers try to steal your password
Theoretically, there are many ways that hackers can go about stealing your password and other login information, especially when it comes to tricking you into giving it to them. But, all the methods go back to the basics. Here are some of the methods hackers employ to steal passwords from innocent people like you and me.
Password spraying: This isn’t always successful, but attackers may attempt to log in to your accounts by trying random common passwords and seeing if anything hits.
Credential stuffing: Hackers test databases or lists of stolen credentials against multiple accounts to see if there’s a match. If you use the same password across different sites, these hackers have a good chance of finding a match.
Phishing: Phishing attempts are one of the most common ways that hackers can get your password. It’s a social engineering tactic where they attempt to trick you into providing your login credentials. Phishing often takes place through emails or messages, perhaps telling you that you missed a payment or your credit card will be charged soon. In a panic, you contact them to resolve the issue, sometimes not realizing you gave away your information to a scammer until it’s too late.
THE VERY WORST AND WEAKEST PASSWORDS OF 2023
Extortion: Extortion is more aggressive when hackers demand passwords through threats or blackmail.
Keyloggers: Another way is to get you to download malware onto your device, which is capable of capturing everything you type, including your passwords.
Brute force attacks: This is a trial-and-error method of stealing passwords by employing an algorithm that attempts to crack passwords by trying every possible combination.
Local discovery: This is when hackers are physically able to find your passwords that are written down or stored insecurely. Perhaps they break into your home and steal a list of passwords on a notepad in your office desk drawer. Or, they find a way to use malware to hack into your password storage software. This is scary as those are meant to be trusted, but it can happen.
Once hackers get the information they need, they can access your various accounts – including bank accounts – and potentially wreak havoc on your finances and other aspects of your life.
Woman talking about password situation (Kurt “CyberGuy” Knutsson)
MORE: THE VERY WORST AND WEAKEST PASSWORDS
How to keep your passwords safe
In addition to the basics we mentioned earlier – like changing your passwords often – there are other strategies you can use to help protect yourself.
Use strong, unique passwords: This is one you probably know, but your password should be long (more than 12 characters) and contain a mix of uppercase letters, lowercase letters, numbers and symbols (and whatever you’re allowed to use on the platform it is). Consider using a password manager to generate and store complex passwords.
Reset your password often: Sometimes, forgetting your password isn’t all that bad. Okay, kidding. But the reason I mention this is because the more often you reset or change your password, the harder it is for hackers to guess it.
Enable two-factor authentication: Most banks and other platforms that hold your sensitive data already have 2FA incorporated into their system, but sometimes, you do need to set it up yourself. This adds an extra layer of security to your accounts by sending a code to your device or email address. It’s easy once you get it going and can keep your account extra secure.
Check your bank accounts often: One of the most common reasons that a hacker tries to steal your password is to have access to your bank account. Check your activities and statements often to make sure no one is using your account or card to buy anything, and let your bank know of any suspicious or fraudulent activities.
Don’t download suspicious apps: This goes without saying, but if you’re downloading an app from a third-party app store or someone sends you an invitation to download an app, it is best not to do it.
Don’t use public devices or sensitive information: If you must use a public or someone else’s device (for instance, a computer at the library), create a guest user account, use private browsing and sign out of your account before leaving the device and clearing the history.
Be careful on public Wi-Fi: In addition to being careful with which devices you use, you also need to be cautious connecting to public Wi-Fi. Hackers lurk in these places, waiting for people to connect to these often unsecured networks, allowing them to creep in and steal your information.
Do regular software updates on your devices: Clever hackers can find ways to install malware on your device. But by doing software updates regularly, you stay one step ahead of their tricks. These updates patch security vulnerabilities, strengthen defenses and ensure your digital fortress remains resilient against their cunning tactics.
Have good antivirus software: The best way to protect yourself from clicking malicious links that install malware that may get access to your private information is to have antivirus protection installed and actively running on all your devices. This can also alert you of any phishing emails or ransomware scams. Get my picks for the best 2024 antivirus protection winners for your Windows, Mac, Android & iOS devices.
Username and Password on device (Kurt “CyberGuy” Knutsson)
MORE: HOW TO ENSURE YOUR PASSWORDS DON’T DIE WITH YOU
What if your password gets stolen anyway?
If you try all of these methods and find out your password has still been stolen, don’t fret. Keep an eye on your accounts, report any identity theft or fraud to the FTC, and reset all your passwords with new, stronger passwords as quickly as possible.
MORE: DITCH YOUR PASSWORD AND SWITCH TO A PASSKEY FOR YOUR AMAZON ACCOUNT
Kurt’s key takeaways
Remember, no security measure is 100% foolproof, but these steps can significantly reduce your risk of being hacked. Stay safe. Any hacker who is determined to steal your password will try nearly every attempt they can think of to get it. But by following the tips above, you can keep yourself that much safer until the hacker moves onto a target who is not as safe.
Have you ever been the victim of a password-related security breach? If so, how did you handle the situation? Let us know by writing us at Cyberguy.com/Contact.
For more of my tech tips & security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.
Ask Kurt a question or let us know what stories you’d like us to cover.
Answers to the most asked CyberGuy questions:
Copyright 2024 CyberGuy.com. All rights reserved.
Technology
Meta’s glasses will turn off the camera if you tamper with the privacy light
Amid public backlash over its smart glasses, Meta announced that it will be updating its glasses with a new feature that will disable the camera when it detects that someone has tampered with or destroyed the glasses’ privacy LED light. The update is meant to address modders who have taken actions such as physically drilling into the LED light.
Meta has previously tried to discourage tampering with the LED light. For example, starting with its second generation glasses, blocking the light with tape or other objects will trigger a prompt asking users to uncover the recording light. However, many modders have found various workarounds for that particular measure.
Meta’s VP of wearables Alex Himel told The Verge that the privacy-focused update was on the way a few weeks ago after launching cheaper Meta Glasses without Ray-Ban branding. At the time, Himel acknowledged that the company was aware of increasing misuse alongside wider adoption of the devices.
Technology
Discord accidentally banned over 8,000 people for posting grids and other ‘benign’ images
Stanislav Vishnevskiy, Discord co-founder and chief technology officer, writes that the bug impacted around 200 users who posted “grid-like” pictures, in addition to about 8,000 people who posted “other benign images” since May 2026. “Everyone affected has now been unbanned,” Vishnevskiy says.
In a thread on X, Discord writes that its safety system is designed to flag content by “matching it against known harmful material.” This system can produce “false positives,” Discord explains, which is when an employee would step in to review the flagged content. But instead of just temporarily preventing the account from uploading content during the review, a glitch led its system to ban users entirely.
“When our staff reviewed and cleared those accounts, the same bug prevented the ban from being lifted automatically, so it just stayed in place,” Discord says.
Technology
Hoto’s PixelDrive screwdriver is down to $60, matching its best price
If your Prime Day purchases included a new desk, TV stand, bookshelf, or other furniture you still haven’t assembled, Hoto’s PixelDrive cordless screwdriver can help speed up the process. It’s currently on sale for $59.99 ($20 off) at Amazon, matching its best price to date.
From tightening loose screws on furniture to repairing electronics, the PixelDrive is designed to handle a wide range of household projects. Hoto includes 30 screwdriver bits that cover many of the most common screw types, all neatly organized in a small cylindrical case. It also offers six adjustable torque settings, allowing you to use less power when working with fragile electronics or increase it when putting together a desk, bookshelf, TV stand, or other furniture. You can also switch between a slower 80RPM mode for more precise work and a faster 200RPM mode with the press of a button.
Hoto also added several features that make assembling projects a little easier. A built-in display lets you quickly check your current torque setting and remaining battery life, while an integrated LED light helps illuminate dim spaces, whether you’re working under a desk or inside a cabinet. The rechargeable 2,000mAh battery also charges over USB-C, so you won’t need to keep buying disposable batteries.
-
Detroit, MI16 minutes agoChild shot while riding bike outside home on Detroit’s west side, police say
-
San Francisco, CA28 minutes agoBay Area restaurant has strict policy on acceptable children behavior
-
Dallas, TX31 minutes agoDetroit Pistons trade Marcus Sasser to Dusty May’s Dallas Mavericks
-
Miami, FL36 minutes agoThe offseason has been a massive success for the Miami Heat
-
Boston, MA43 minutes ago
Can’t afford Boston’s priciest restaurants? Try these instead. – The Boston Globe
-
Denver, CO46 minutes agoCity of Denver says images of piling waste a case of illegal dumping
-
Seattle, WA51 minutes ago14-year-old dies in electric motorcycle crash at Seattle bike park
-
San Diego, CA58 minutes agoSerial sex abuser sentenced to over 300 years for crimes against young relatives