Hackers Can Hack Gmail’s Two Factor Authentication
Yes, you heard right. Google’s extremely secure two step verification system to prevent Gmail account from getting hacked is not a foolproof. It is not safe way to protect your Gmail account. Now hackers have found a new way to beat this two-step verification; more and more access is coming out after it was first reported.
To hack a Gmail account that has Two Factor Authentication enabled, hackers are fooling users who don’t have much knowledge about how the tech works. There are so many people who can fall victim to it.
Here Is How It Works
What Happens At Victim’s Side: Hacker send a email to the victim asking them to discuss something and send them a link to check out a document. That link takes the victim to a Google Drive page and asking the victim to login into it to view the document.
When victim enters his Gmail login credential, Google send a text to his mobile phone as the Two Factor Authentication is enabled. The moment victim opens the Two Factor Authentication code into the fake page, the user is redirected to the Google Drive document just like it would in a normal case.
What Happens At Hacker’s Side: when you are logged into your Gmail account and click on Google Drive link, you wouldn’t be asked for logging in as you are logged in already. So, the Google Drive is fake page created by the hacker to ask for victim’s login details.
The victim put his login credentials on behalf of the hacker, and the Authentication code that victim would enter would also be for the hacker to login into victim’s Gmail account.
If victim is not alert, something terrible would be happen to his account.
How To Prevent Your Gmail Account From Hackers?
Today many people are not that much technology-friendly to understand what has happened to their account or what to do after account being hacked? Email account is the epicenter of all the accounts one has created online, be it Gmail, Facebook, Instagram or accounts that involve money like PayPal etc.
Apart from that, many people have very sensitive and confidential information in their emails, and this is the reason why high-profile politicians and celebrities are on the list of Hackers.
I have told you that Two Factor Authentication is not a foolproof, it doesn’t mean you should use it. Your account is more secure without a Two Factor Authentication.
You just need to stay aware of the places you login into your account, check the link in the address bar and see if it is really from Google. Remember that, if you are already logged into your account, it shouldn’t ask you to log in.
Always try to protect weak links that would lead to a hack and also do not mention your email address everywhere on the Internet. You can use separate email account for all other account like Facebook, Instagram etc.
No matter how many layers of security is provided by Google and other service providers to secure your account, Hacker will find a way to crack it. If you keep these things in mind, you will end up taking good care of your account.