Break into Gmail
Break into Gmail
3:43

Break into Gmail

Culture
Recently, Twitter suffered an embarrassment as a hacker obtained quite a bit of confidential information and passed it along to tech news sites. Apparently, the hacker accessed a Twitter employees' Gmail account and used that to gain access to Google Docs, company systems, and more. The employee most likely thought they had proper security protections in place. I�m Tom Merritt from CNET.com, and I�ll show you how the Gmail account got cracked, and how you can take better care to protect your Gmail account. Obviously, you should start by picking a strong password that�s not a dictionary word or easily guessable. But that password is only as strong as Google's password recovery system. Google allows three methods to recover your password. E-mail, SMS, and the vaunted "security question." Three methods an attacker could use to gain entry to your account. Go to settings, choose Accounts, and click on Google Account Settings. Then click "Change password recovery options." The e-mail recovery method tripped up the Twitter employee. In this method, if you forget your password, you can specify an e-mail account where a password- reset link can be sent. This is common practice in Web services. Allegedly, the Twitter employee had their recovery account set to a Hotmail account that was deactivated. The hacker was able to guess what the e-mail had been, reregister the account, and was able to get the password reset link sent to the Hotmail account. How do you protect yourself against that? Well make sure you have a valid e-mail account listed as your secondary account, and make sure that account has solid security protection. Or better yet, don�t use this method. Just leave the secondary e-mail account blank. You have two other methods to choose from. Method two is SMS. This is fairly secure, since any attacker would have to get access to your phone, or at least be near enough to intercept text messages to your phone number to steal your password. While this isn�t impossible, it�s a taller order. Of course, it also means you have to have a phone with a text messaging plan. Still this is my favored method. Method No. 3 is my least favorite. The Security Question. This is where a lot of people fail. If you make the answer to your security question something guessable or easy to find out, then the strength of your password won�t matter. Google suggests a few hard to guess things like your first phone number or Dad�s middle name. But while they may be hard, all of these are discoverable. Thankfully, Google lets you write your own question. I think you should treat this security question like another password. Write your own question and make the answer something entirely unguessable. Like What have you never told anyone else about? Answer: 5623break. Yes, that may be hard to remember, but it�s very secure. Unfortunately, they don't let you leave this field blank, so at best you can fill it with nonsense information. No system is 100 percent secure and obviously the most secure method here would be to provide no way to recover your password. However, if that�s too strict for you, now you have some information to help you choose where in that balance between protection and convenience you land. Stay safe out there. I�m Tom Merritt, CNET.com.

Up Next

Hacks@Home: How to install a smart plug
hackshome-how-to-install-a-smart-plug0

Up Next

Hacks@Home: How to install a smart plug

Worst hacks of the year
gettyimages-527099783

Worst hacks of the year

Tweak MiFi to charge
hk_MiFiUSB720.jpg

Tweak MiFi to charge

Elevator hacks
hk_elevators720.jpg

Elevator hacks

Share your purchased iPhone apps on multiple devices
hk_shareapps720.jpg

Share your purchased iPhone apps on multiple devices

Add an external hard drive to your TiVo HD
hk_tivoexternal720.jpg

Add an external hard drive to your TiVo HD

Why AT&T blocked 4Chan
hk_ATT4Chan720.jpg

Why AT&T blocked 4Chan

Make your own batteries
hk_MakeBatteries720.jpg

Make your own batteries

Tether your iPhone on OS 3.0
hk_tetheriphone720.jpg

Tether your iPhone on OS 3.0

Tech Shows

The Apple Core
apple-core-w

The Apple Core

Alphabet City
alphabet-city-w

Alphabet City

CNET Top 5
cnet-top-5-w

CNET Top 5

The Daily Charge
dc-site-1color-logo.png

The Daily Charge

What the Future
what-the-future-w

What the Future

Tech Today
tech-today-w

Tech Today

Latest News All latest news

Meta Horizon Workrooms With Quest Pro: A Peek at the Future of Work
working-with-quest-pro-horizon-workroom-2

Meta Horizon Workrooms With Quest Pro: A Peek at the Future of Work

Why NASA Is Helping Apptronik Build a Humanoid Robot
apptronik-seq-00-06-02-21-still007

Why NASA Is Helping Apptronik Build a Humanoid Robot

One Day With Samsung's New Galaxy S23 Ultra
24-hours-with-the-s23-ultra-3

One Day With Samsung's New Galaxy S23 Ultra

'Prehistoric Planet': The Visual Effects Behind the Apple TV Plus Show
prehistoricplanet

'Prehistoric Planet': The Visual Effects Behind the Apple TV Plus Show

Apple's Mysterious New Music App
230201-yt-apple-new-music-app-v05

Apple's Mysterious New Music App

Boston Dynamics' Stretch Robot Is DHL's Newest Helper
dhl-image-without-bug

Boston Dynamics' Stretch Robot Is DHL's Newest Helper

Most Popular All most popular

Easy Ways to Lower Your Utility Bills and Save Money
yt-reduce-your-utility-bills-v3

Easy Ways to Lower Your Utility Bills and Save Money

How Healthy is Your Heart, Really? 5 Ways to Tell at Home
how-healthy-is-your-heart-2

How Healthy is Your Heart, Really? 5 Ways to Tell at Home

How to Delete or Disable Your Instagram Account
phoneonorange

How to Delete or Disable Your Instagram Account

One Day With Samsung's New Galaxy S23 Ultra
24-hours-with-the-s23-ultra-3

One Day With Samsung's New Galaxy S23 Ultra

Samsung's Galaxy S23 Lineup Is Here With Big Camera Upgrades
cnets23

Samsung's Galaxy S23 Lineup Is Here With Big Camera Upgrades

Big tech explains how it will fight foreign government hacks in US elections
senate-ceos-facebook-russian-interference-00-07-11-09-still083

Big tech explains how it will fight foreign government hacks in US elections

Latest Products All latest products

Samsung's Galaxy S23 Lineup Is Here With Big Camera Upgrades
cnets23

Samsung's Galaxy S23 Lineup Is Here With Big Camera Upgrades

Testing Apple's New M2 MacBook Pro and Mac Mini
macbook-pro-and-mac-mini

Testing Apple's New M2 MacBook Pro and Mac Mini

Hands On: Google Android Auto in Volvo's New EX90
google-booth-seq-00-08-05-25-still002

Hands On: Google Android Auto in Volvo's New EX90

Hands On: Acer's 3D Stereoscopic Screen
c0270-mp4-02-36-54-21-still001

Hands On: Acer's 3D Stereoscopic Screen

'Hey Disney' Comes to Amazon Echo Devices
ces-disneyalexa-00-01-11-14-still001

'Hey Disney' Comes to Amazon Echo Devices

Hearing Dolby Atmos in a Car Blew Me Away
ces-dolby-00-00-55-13-still001

Hearing Dolby Atmos in a Car Blew Me Away

Latest How To All how to videos

Connect a Meta Quest 2 VR Headset to a PC
pc-vr-5

Connect a Meta Quest 2 VR Headset to a PC

Cast Your Meta Quest Headset to a TV, Phone or Browser
cast-2

Cast Your Meta Quest Headset to a TV, Phone or Browser

MacOS Ventura Continuity Camera Turns Your iPhone Into a Webcam
1203246975312353-pnmdl8bwygpxcjffhlcf-height640.png

MacOS Ventura Continuity Camera Turns Your iPhone Into a Webcam

How to Clean Your Keyboard's Sticky Keys
3keyboards

How to Clean Your Keyboard's Sticky Keys

How to Play Games from PlayStation Plus on PC
psstill

How to Play Games from PlayStation Plus on PC

How to Delete or Disable Your Instagram Account
phoneonorange

How to Delete or Disable Your Instagram Account