Browser Extension Gmail Hacker
This method don’t let the Gmail hacker / attacker give complete access to your Gmail account but gives some power to control your account indirectly. I’ve seen multiple Google Chrome and Firefox addons which secretly perform actions like sharing a post in Google plus, following a Google page etc.
How Browser extension Gmail hacker works?
When you visit some malicious websites or webpages, you will be prompted to install a browser addon. Once you install the addon, it would perform all the tasks described by Gmail hacker or attacker who created it. Some primary actions are posting status updates in your Google wall, following a Google page, following a person, inviting your friends etc. You may not know these things happening in your Google account except when you check your Google Activities periodically.
How can you prevent browser extension Gmail hacker?
You can monitor your Gmail account activities using a feature called Google History. You should not trust any third party websites prompting you to add a browser extension. Install addons only if you trust the publisher. Why should you take risk if you don’t know the publisher or intention of the addon? Always stay from these malicious browser extensions.
Browser Vulnerabilities are security bugs which exists in older versions of mobile and desktop browsers.
How browser vulnerabilities works in hacking?
Most browser vulnerabilities are exploited through an older version of browser since all of the zero days are patched by browser vendor once it is reported by researchers around the world. For example, Browser Same Origin Policy Vulnerability could allow a hacker / attacker to read response of any Page like Gmail and could be able to perform any action in your Gmail account since they are able to read the response by accessing the Google.com origin. Android Chrome SOP bypass by Rafay Baloch is one such vulnerability that is affecting Android webview in Android < 4.4.
How can you prevent yourself from browser vulnerabilities?
You should always update your browser and operating system once there is an updated version available. Keeping an older version always have many risk factors involved.
Self XSS Scam
Self XSS also known as Self Cross Site Scripting. XSS is basically a web security vulnerability, it enables hackers to inject scripts to web pages used by other users. What is self XSS then? Self XSS is a kind of social engineering attack where a victim accidentally executes a script, thus exploiting it to the hacker.
How self XSS scam works?
In this method, hacker promises to help you hack somebody else’s Gmail account. Instead of giving you access to someone else’s account, the hacker tricks you into running malicious Javascript in your browser console that gives hacker the ability to manipulate your account.
How can you prevent yourself from self XSS?
Self XSS is something that you let hackers to hack your account. Never and ever copy & paste code given by someone in your browser. Otherwise you will get your Gmail account hacked.
Trojan Horses
Trojan Horse is a malicious program which is used to spy and control a computer by misleading users of its true intent. Malware Trojan can also be called as Remote Key Logger since it records key strokes of all the applications of our computer and send it to the hacker.
How Trojan Horse hacking works?
A software you think legit might be a trojan. A PDF you don’t suspect might contain a trojan. A avi media file you have might be a trojan. Trojan horses runs in the backgroud process, collect information and send it to hacker. Trojan horses can be sent in any form through any medium like pen drive, ipod, website or email. In our topic, Trojan records Gmail password that you have typed in your browser and send it to the Gmail hacker using Internet.
How can you prevent yourself from Trojan?
Don’t install programs from unknown source.
Don’t play media files received from unknown source.
Don’t open any kind of files downloaded from untrusted sources.
Don’t insert pen drive from any suspicious people.
Have an updated anti-virus software installed in your computer.
Having an updated anti-virus software do not guarantee you to stay safe from hacking. Basically an anti-virus software is a collection of detected malwares and viruses. Its job is to compare each and every file with their database of viruses. There are many softwares which enable us to create a undetectable trojans. But it is very unlikely to target a common man with undetectable trojanware. So having a updated antivirus program is some what protective.
Gmail Zero Day
Zero day is a security vulnerability that are unknown to the respective software vendor. In our context, Undiscovered Google vulnerabilities are called Gmail Zero Day.
How Google Zero Day hacking works?
Gmail zero day vulnerabilities are very rare since Google runs a bug bounty program where security researchers around the world participate and report zero day vulnerabilities. It is basically a security loop hole that is unaware to Google. It can be any hack affecting Gmail. There are two types of people who find zero day vulnerabilities. First case is Security Researchers and Bug hunters who make a responsible disclosure about the vulnerability to the software vendor, Gmail in our context. Another case falls under evil side, black hat hackers who find zero day vulnerabilities don’t disclose it to Gmail and they will use it for their personal benefit of hacking.
How can you prevent yourself from Zero Day found by a hacker?
You need not be afraid of a zero day vulnerability affecting Google. As i have said earlier, zero day vulnerabilities are very rare. In most cases zero day vulnerabilities are targeted only at influential people and celebrities. It is rare to target a common man using a zero day vulnerability.
This method don’t let the Gmail hacker / attacker give complete access to your Gmail account but gives some power to control your account indirectly. I’ve seen multiple Google Chrome and Firefox addons which secretly perform actions like sharing a post in Google plus, following a Google page etc.
How Browser extension Gmail hacker works?
When you visit some malicious websites or webpages, you will be prompted to install a browser addon. Once you install the addon, it would perform all the tasks described by Gmail hacker or attacker who created it. Some primary actions are posting status updates in your Google wall, following a Google page, following a person, inviting your friends etc. You may not know these things happening in your Google account except when you check your Google Activities periodically.
How can you prevent browser extension Gmail hacker?
You can monitor your Gmail account activities using a feature called Google History. You should not trust any third party websites prompting you to add a browser extension. Install addons only if you trust the publisher. Why should you take risk if you don’t know the publisher or intention of the addon? Always stay from these malicious browser extensions.
Browser Vulnerabilities are security bugs which exists in older versions of mobile and desktop browsers.
How browser vulnerabilities works in hacking?
Most browser vulnerabilities are exploited through an older version of browser since all of the zero days are patched by browser vendor once it is reported by researchers around the world. For example, Browser Same Origin Policy Vulnerability could allow a hacker / attacker to read response of any Page like Gmail and could be able to perform any action in your Gmail account since they are able to read the response by accessing the Google.com origin. Android Chrome SOP bypass by Rafay Baloch is one such vulnerability that is affecting Android webview in Android < 4.4.
How can you prevent yourself from browser vulnerabilities?
You should always update your browser and operating system once there is an updated version available. Keeping an older version always have many risk factors involved.
Self XSS Scam
Self XSS also known as Self Cross Site Scripting. XSS is basically a web security vulnerability, it enables hackers to inject scripts to web pages used by other users. What is self XSS then? Self XSS is a kind of social engineering attack where a victim accidentally executes a script, thus exploiting it to the hacker.
How self XSS scam works?
In this method, hacker promises to help you hack somebody else’s Gmail account. Instead of giving you access to someone else’s account, the hacker tricks you into running malicious Javascript in your browser console that gives hacker the ability to manipulate your account.
How can you prevent yourself from self XSS?
Self XSS is something that you let hackers to hack your account. Never and ever copy & paste code given by someone in your browser. Otherwise you will get your Gmail account hacked.
Trojan Horses
Trojan Horse is a malicious program which is used to spy and control a computer by misleading users of its true intent. Malware Trojan can also be called as Remote Key Logger since it records key strokes of all the applications of our computer and send it to the hacker.
How Trojan Horse hacking works?
A software you think legit might be a trojan. A PDF you don’t suspect might contain a trojan. A avi media file you have might be a trojan. Trojan horses runs in the backgroud process, collect information and send it to hacker. Trojan horses can be sent in any form through any medium like pen drive, ipod, website or email. In our topic, Trojan records Gmail password that you have typed in your browser and send it to the Gmail hacker using Internet.
How can you prevent yourself from Trojan?
Don’t install programs from unknown source.
Don’t play media files received from unknown source.
Don’t open any kind of files downloaded from untrusted sources.
Don’t insert pen drive from any suspicious people.
Have an updated anti-virus software installed in your computer.
Having an updated anti-virus software do not guarantee you to stay safe from hacking. Basically an anti-virus software is a collection of detected malwares and viruses. Its job is to compare each and every file with their database of viruses. There are many softwares which enable us to create a undetectable trojans. But it is very unlikely to target a common man with undetectable trojanware. So having a updated antivirus program is some what protective.
Gmail Zero Day
Zero day is a security vulnerability that are unknown to the respective software vendor. In our context, Undiscovered Google vulnerabilities are called Gmail Zero Day.
How Google Zero Day hacking works?
Gmail zero day vulnerabilities are very rare since Google runs a bug bounty program where security researchers around the world participate and report zero day vulnerabilities. It is basically a security loop hole that is unaware to Google. It can be any hack affecting Gmail. There are two types of people who find zero day vulnerabilities. First case is Security Researchers and Bug hunters who make a responsible disclosure about the vulnerability to the software vendor, Gmail in our context. Another case falls under evil side, black hat hackers who find zero day vulnerabilities don’t disclose it to Gmail and they will use it for their personal benefit of hacking.
How can you prevent yourself from Zero Day found by a hacker?
You need not be afraid of a zero day vulnerability affecting Google. As i have said earlier, zero day vulnerabilities are very rare. In most cases zero day vulnerabilities are targeted only at influential people and celebrities. It is rare to target a common man using a zero day vulnerability.