Monday, January 9, 2017

Phishing the easy way. You have to read to believe.

The following narrative is courtesy of Paul Shane a retired AP correspondent.
------------------
How John Podesta's email account was hacked is old news. Chatter about it has been on hacking blogs for a couple of weeks made me curious.
 
It took only about an hour of Googling to find a free website that had a webform where I could supply an email address and chose a template to send a phishing email to warn the recipient to change his password. If the person clicked on the link and attempted to use it to change the password, an email would be returned to me with that old password and the attempted new one. The password couldn't really be changed, but now I would know the working password. Phishing templates were available for Gmail, Hotmail, Outlook, Yahoo, Vanguard, Bank of America and dozen others. Julian Assange was right when he said a 14-year-old could have broken into the Demo Committee email system. As someone said, maybe "password" was used as Podesta's password because "123456" was too hard.

-------------------

No comments:

Post a Comment