Break into Gmail
Recently, Twitter suffered an embarrassment as a hacker obtained quite a bit of confidential
information and passed it along to tech news sites.
Apparently, the hacker accessed a Twitter employees' Gmail account and used that to gain access to
Google Docs, company systems, and more.
The employee most likely thought they had proper security protections in place. I�m Tom Merritt
from CNET.com, and I�ll show you how the Gmail account got cracked, and how you can take better
care to protect your Gmail account.
Obviously, you should start by picking a strong password that�s not a dictionary word or easily
guessable.
But that password is only as strong as Google's password recovery system. Google allows three
methods to recover your password. E-mail, SMS, and the vaunted "security question." Three methods
an attacker could use to gain entry to your account.
Go to settings, choose Accounts, and click on Google Account Settings. Then click "Change password
recovery options."
The e-mail recovery method tripped up the Twitter employee.
In this method, if you forget your password, you can specify an e-mail account where a password-
reset link can be sent. This is common practice in Web services.
Allegedly, the Twitter employee had their recovery account set to a Hotmail account that was
deactivated. The hacker was able to guess what the e-mail had been, reregister the account, and was
able to get the password reset link sent to the Hotmail account.
How do you protect yourself against that? Well make sure you have a valid e-mail account listed as
your secondary account, and make sure that account has solid security protection. Or better yet, don�t
use this method. Just leave the secondary e-mail account blank.
You have two other methods to choose from.
Method two is SMS. This is fairly secure, since any attacker would have to get access to your phone, or
at least be near enough to intercept text messages to your phone number to steal your password.
While this isn�t impossible, it�s a taller order.
Of course, it also means you have to have a phone with a text messaging plan. Still this is my favored
method.
Method No. 3 is my least favorite. The Security Question. This is where a lot of people fail. If you
make the answer to your security question something guessable or easy to find out, then the strength
of your password won�t matter. Google suggests a few hard to guess things like your first phone
number or Dad�s middle name. But while they may be hard, all of these are discoverable. Thankfully,
Google lets you write your own question.
I think you should treat this security question like another password. Write your own question and
make the answer something entirely unguessable. Like What have you never told anyone else about?
Answer: 5623break.
Yes, that may be hard to remember, but it�s very secure. Unfortunately, they don't let you leave this
field blank, so at best you can fill it with nonsense information.
No system is 100 percent secure and obviously the most secure method here would be to provide no
way to recover your password. However, if that�s too strict for you, now you have some information
to help you choose where in that balance between protection and convenience you land.
Stay safe out there. I�m Tom Merritt, CNET.com.
Up Next
Hacks@Home: How to install a smart plug
Up Next
Hacks@Home: How to install a smart plug
Worst hacks of the year
Worst hacks of the year
Tweak MiFi to charge
Tweak MiFi to charge
Elevator hacks
Elevator hacks
Share your purchased iPhone apps on multiple devices
Share your purchased iPhone apps on multiple devices
Add an external hard drive to your TiVo HD
Add an external hard drive to your TiVo HD
Why AT&T blocked 4Chan
Why AT&T blocked 4Chan
Make your own batteries
Make your own batteries
Tether your iPhone on OS 3.0
Tether your iPhone on OS 3.0
Tech Shows
Latest News All latest news
Did a Week With the Apple Watch Make Me Use My iPhone Less?
Did a Week With the Apple Watch Make Me Use My iPhone Less?
How Google Tests the Cameras in Its Pixel Phones
How Google Tests the Cameras in Its Pixel Phones
Boston Dynamics' New Electric Atlas vs. Tesla's Optimus
Boston Dynamics' New Electric Atlas vs. Tesla's Optimus
What is the Fediverse?
What is the Fediverse?
The Missing Piece to Apple's Eco-Friendly Mission
The Missing Piece to Apple's Eco-Friendly Mission
First Drive in the All-Electric 2024 Fiat 500e
First Drive in the All-Electric 2024 Fiat 500e
Most Popular All most popular
First Look at TSA's Self-Screening Tech (in VR!)
First Look at TSA's Self-Screening Tech (in VR!)
Samsung Galaxy S24 Ultra Review: More AI at a Higher Cost
Samsung Galaxy S24 Ultra Review: More AI at a Higher Cost
'Circle to Search' Lets Users Google From Any Screen
'Circle to Search' Lets Users Google From Any Screen
Asus Put Two 14-inch OLEDs in a Laptop, Unleashes First OLED ROG Gaming Laptop
Asus Put Two 14-inch OLEDs in a Laptop, Unleashes First OLED ROG Gaming Laptop
Samsung Galaxy Ring: First Impressions
Samsung Galaxy Ring: First Impressions
Best of Show: The Coolest Gadgets of CES 2024
Best of Show: The Coolest Gadgets of CES 2024
Latest Products All latest products
2025 Audi Q6, SQ6 E-Tron: Audi's Newest EV Is Its Most Compelling
2025 Audi Q6, SQ6 E-Tron: Audi's Newest EV Is Its Most Compelling
Hands-On with Ford's Free Tesla Charging Adapter
Hands-On with Ford's Free Tesla Charging Adapter
Nuro R3 is an Adorable Self-Driving Snack Bar
Nuro R3 is an Adorable Self-Driving Snack Bar
First Look: The $349 Nothing Phone 2A Aims to Brighten Your Day
First Look: The $349 Nothing Phone 2A Aims to Brighten Your Day
Best of MWC 2024: Bendable Screens, AI Wearables and More
Best of MWC 2024: Bendable Screens, AI Wearables and More
This Concept Laptop from Lenovo Has a Transparent Display
This Concept Laptop from Lenovo Has a Transparent Display
Latest How To All how to videos
Tips and Tricks for the AirPods Pro 2
Tips and Tricks for the AirPods Pro 2
How to Watch the Solar Eclipse Safely From Your Phone
How to Watch the Solar Eclipse Safely From Your Phone
Windows 11 Tips and Hidden Features
Windows 11 Tips and Hidden Features
Vision Pro App Walkthrough -- VisionOS 1.0.3
Vision Pro App Walkthrough -- VisionOS 1.0.3
Tips and Tricks for the Galaxy S24 Ultra
Tips and Tricks for the Galaxy S24 Ultra
TikTok Is Now on the Apple Vision Pro