Coldblackice
[H]ard|Gawd
- Joined
- Aug 14, 2010
- Messages
- 1,152
How is "Guccifer" getting into so many prominent persons' email accounts?
I'm surprised how often this continues to happen. I've assumed it's via either guessing passwords (Password: "password") or guessing reset information (or finding it through publicly available info).
But even then, I still don't understand how accounts seem to be so easily hacked with "guesses" (if that's how the majority of these takeovers are happening) -- I'd expect the major email carriers to quickly block out more than a handful of wrong attempts, and if continued, ban IP addresses. Sure, there'd be ways around this through VPN's, proxies, automation, etc., but I'd still expect some form of authoritative quashing of such attempts.
It's been my understanding that the most prevalent methods are:
-Password guessing
-Security-reset information guessing
-Rogue links (w/ Java vulnerabilities)
-Trick emails ("Please respond with password for verification")
Any insight on how it keeps happening?
EDIT (forgot to include what sourced my question):
www.thesmokinggun.com/documents/colin-powell-guccifer-email-hack-594321
I'm surprised how often this continues to happen. I've assumed it's via either guessing passwords (Password: "password") or guessing reset information (or finding it through publicly available info).
But even then, I still don't understand how accounts seem to be so easily hacked with "guesses" (if that's how the majority of these takeovers are happening) -- I'd expect the major email carriers to quickly block out more than a handful of wrong attempts, and if continued, ban IP addresses. Sure, there'd be ways around this through VPN's, proxies, automation, etc., but I'd still expect some form of authoritative quashing of such attempts.
It's been my understanding that the most prevalent methods are:
-Password guessing
-Security-reset information guessing
-Rogue links (w/ Java vulnerabilities)
-Trick emails ("Please respond with password for verification")
Any insight on how it keeps happening?
EDIT (forgot to include what sourced my question):
www.thesmokinggun.com/documents/colin-powell-guccifer-email-hack-594321
Last edited: