10 Levels of Password Hacking

00:00

this video is sponsored by brilliant

00:02

coming in at level one we have the

00:03

rainbow table attack rainbow tables are

00:05

collections of pre-computed hash values

00:07

used to crack password hashes hashing is

00:09

when a hash function transforms a plain

00:11

text password into a fix size string of

00:13

characters that appears random that's

00:15

how passwords are typically stored in

00:17

databases and an attacker can use a

00:19

rainbow table to try to reverse that

00:21

process to direct them to the original

00:23

password if a hash in a database matches

00:24

a hash value that's already precomputed

00:26

in their table they can quickly retrieve

00:28

the original password I want to make it

00:30

clear that rainbow tables aren't just

00:31

simple hash tables they're unique

00:33

because of their use of reduction

00:35

functions reduction function simply

00:36

converts a hash into a potential plain

00:38

text password which we can then rehash

00:40

to create a chain of passwords and

00:42

hashes these chains are added to the

00:44

table to improve the likelihood of

00:45

cracking a password and the term rainbow

00:47

in rainbow tables by the way refers to

00:49

the use of different colors used to

00:51

represent various hashing and reduction

00:53

functions and steps there's a lot more

00:55

that goes into them and as impressive as

00:56

they are they became mostly obsolete

00:58

once their Kryptonite came along

01:05

[Music]

01:07

salting involves adding a random

01:08

strength to passwords before they

01:10

undergo hashing ensuring each password

01:12

is unique even if multiple people use

01:14

the same password because rainbow table

01:16

attacks work under the assumption that

01:18

its hex string has one specific hash

01:20

value salting renders them useless level

01:22

two dumpster diving attack this is one

01:25

of the least effective ways to try

01:26

cracking someone's password because it's

01:28

limited by physical access and relies on

01:30

poor physical security practices you'd

01:33

have to hope that someone actually wrote

01:34

down their password and then carelessly

01:36

threw it away where it's accessible in

01:38

today's digital age important

01:39

credentials are rarely discarded so

01:41

openly and many people in businesses use

01:43

shredders to dispose of sensitive

01:45

documents realistically though an

01:47

attacker using this method would most

01:49

likely be in search of digital waste

01:50

such as hard drives USB drives and other

01:52

storage devices where they can then use

01:55

data recovery tools to retrieve

01:57

sensitive information so before throwing

01:58

your computer away always make sure that

02:00

your sensitive data has been properly

02:07

deleted this will always be the best

02:09

method level three shoulder surfing

02:11

attack shoulder surfing happens when an

02:13

attacker tries to steal data by watching

02:15

over a victim's shoulder as they use

02:17

their device in public dude this is

02:19

another not so good way of trying to

02:21

crack someone's password as it is

02:23

limited by physical proximity and

02:24

visibility even if the attacker

02:26

possessed Godlike Vision password

02:28

masking is still a thing passwords

02:30

appear as dots or asteris for this very

02:33

reason the biggest factor in Falling

02:35

prey to this type of attack is simply

02:36

being in public there's rarely any

02:38

reason for a stranger to be this close

02:40

to you in public unless you're taking

02:42

the train and Tokyo during rush hour and

02:45

if that's the case having your password

02:46

stolen should be the least of your

02:48

worries level four Hardware key logger

02:50

attack Hardware Key loggers or small

02:52

physical devices designed to record

02:54

every key stroke made on a computer

02:55

keyboard cyber criminals can hide these

02:57

devices within computer cables or inside

02:59

a US as the adapter making them

03:01

difficult for the victim to detect once

03:03

installed they run in the background

03:04

tracking everything you type such as

03:06

credit card information websites you

03:08

visit and passwords you use what makes

03:10

them effective is that they're not

03:11

relying on software running on the

03:13

system which makes them undetectable by

03:15

typical antivirus or antimalware

03:17

programs however because you need

03:19

physical access to the victim's computer

03:21

to install the key logger attackers do

03:23

not commonly use it in cyber attacks yes

03:25

software key loggers do exist but

03:27

attackers commonly deploy them through

03:29

fishing methods which is an entirely

03:31

different kind of attack level five

03:33

simple Brute Force attack a simple Brute

03:35

Force attack occurs when a hacker uses a

03:36

password cracking program to process an

03:38

astounding number of possible

03:40

combinations of alpha numeric characters

03:42

until the correct one is found this

03:43

trial and era tactic can be very time

03:45

consuming especially with longer and

03:47

more complex passwords this is why

03:49

nowadays most websites ask you to add

03:51

special characters and numbers to your

03:53

password this makes brute forcing

03:55

stupidly slow for reference it would

03:57

take approximately 7 quadrillion years

03:59

to crack this password using a Brute

04:01

Force algorithm although this sort of

04:03

attack can be very slow it tickles my

04:05

brain to think that given enough time

04:07

and resources a Brute Force attack could

04:09

theoretically crack any password known

04:11

to man it's like Batman with prep time

04:13

Unstoppable another fun thought is

04:15

imagining you're incredibly lucky and

04:17

cracking the password on your first try

04:19

although super unlikely the chances

04:21

aren't zero if you want to dive deeper

04:23

into how probability Works I'd recommend

04:25

checking out brilliant.org today's

04:26

sponsor brilliant is a learning platform

04:28

that offers engag in courses on a

04:30

variety of topics within Math and

04:32

Science it's a great way to sharpen your

04:33

mind and learn new skills they start you

04:35

with the basics and build up your

04:37

understanding step by step using

04:39

interactive problem solving methods that

04:40

are proven to be six times more

04:42

effective than boring lecture videos not

04:44

only does brilliant help you understand

04:46

specific topics but it also builds your

04:48

critical thinking skills through problem

04:49

solving and not memorizing and lastly

04:51

brilliant also helps you develop a

04:53

powerful daily learning habit with

04:55

lessons that you can complete in just a

04:56

few minutes a day it's perfect for both

04:58

personal and Prof professional growth

05:00

it's a mindful alternative to Mindless

05:02

scrolling one of their latest pieces of

05:03

content is an introduction to

05:05

probability this course is perfect for

05:06

Learners of any level to start or

05:08

continue learning data analysis with a

05:10

fully built out suit of new content from

05:12

based theorem to multiple linear

05:14

regression to try everything brilliant

05:16

has to offer for free for a full 30 days

05:18

visit brilliant.org ens or click on the

05:21

link in the description you'll also get

05:22

20% off in annual premium subscription

05:24

thank you to brillian for sponsoring

05:26

this video level six men in the- Middle

05:28

attack a man in the middle attack occurs

05:30

when a hacker secretly steals data by

05:32

intercepting Communications between two

05:34

parties who believe they are

05:36

communicating directly with each other

05:37

the hacker can either EAS drop on or

05:39

impersonate one of the parties making it

05:41

seem like a normal exchange of

05:42

information is happening but it's not

05:45

man in the middle attacks come in many

05:46

different forms there's Wi-Fi EAS

05:48

dropping heart poisoning DNS spoofing

05:50

and many more you would expect that a

05:52

lot of these methods wouldn't work with

05:54

today's level of security such as

05:55

encryption and sign certificates but

05:57

they're very much still a thing what

05:59

what's not a thing anymore however is

06:01

the name man in the- Middle attack it

06:03

has been rebranded as adversary in the-

06:05

middle or on path attack because and I I

06:08

didn't even know this but apparently men

06:10

in the- Middle attacks can actually be

06:12

performed by a woman level seven SQL

06:14

injection attack escal injection is an

06:17

attack that relies on a web

06:18

vulnerability that's been known for over

06:20

20 years and yet it remains one of the

06:23

most widely exploited flaws and web

06:25

applications today it's like discovering

06:27

that people are still hiding their spare

06:28

house keys under the doormat so SQL or

06:31

SQL simply put is a language that lets

06:33

you interact with a website's database

06:35

when you sign into a website the system

06:36

executes SQL commands to verify whether

06:39

your username and password match the

06:40

records stored in the database the issue

06:42

comes when the website's code does not

06:44

properly separate user input from its

06:46

SQL queries when that happens attackers

06:49

can inject their own SQL commands into

06:51

the text field allowing them to read

06:53

edit and even delete everything in a

06:55

database and it's funny because this

06:57

attack can easily be prevented if

06:59

Developers stize their code level eight

07:01

dictionary attack in a dictionary attack

07:04

a hacker systematically tests every word

07:06

in a list of common passwords and

07:08

basically any word from a dictionary to

07:09

guess a user's password this method is

07:11

more effective than a pure Brute Force

07:13

attack due to the fact that people tend

07:14

to use overused and easy to remember

07:17

passwords here's a list of the top 20

07:19

most used passwords in the United States

07:21

according to nordpass and they're

07:23

exactly what you would expect you have

07:24

the typical numeric sequences such as 1

07:26

2 3 4 5 password and sh shed bird what

07:30

the dictionary attacks do have their

07:32

shortcomings again most websites today

07:34

require that passwords include a

07:36

combination of letters numbers and

07:38

special characters and also meet a

07:40

minimum length they're basically trying

07:41

to make your password more complex so

07:43

that there's a lower chance of it being

07:44

on an attackers list level nine

07:46

credential stuffing attack credential

07:48

stuffing is a type of Brute Force attack

07:50

in which attackers use already leaked

07:52

passwords to gain access to users

07:53

accounts what makes this attack so

07:55

dangerous is that it relies mostly on

07:57

the fact that many people reuse the same

07:59

password across various applications

08:01

reusing the same password across

08:02

multiple sites can turn a single

08:04

security breach into a domino effect

08:05

compromising all of your accounts at

08:07

once so treat your passwords like

08:09

condoms only use them once if you don't

08:11

you might end up with an unexpected user

08:13

on your family plan funny enough

08:15

credential stuffing attacks have a very

08:16

low rate of success about 0.1% according

08:19

to Cloud flare but the sheer volume of

08:21

credential collections that's available

08:23

makes this attack worth it if an

08:24

attacker has 1 million sets of

08:26

credentials this could yield around

08:28

1,000 successfully C accounts and lastly

08:31

level 10 fishing attacks fishing occurs

08:33

when a thread actor Bas an individual

08:35

into revealing sensitive information

08:37

I've place this at number 10 because

08:39

it's an attack that best capitalizes on

08:41

human error which is the most

08:42

challenging vulnerability to mitigate

08:44

also fishing can set the stage for

08:46

launching further potent attacks such as

08:47

deploying malware fishing attacks come

08:49

in a variety different flavors however

08:51

the most common is arguably email

08:53

fishing these emails may contain

08:55

deceptive links that directs you to a

08:56

malicious website that can steal loging

08:58

credentials or attachments that when

09:00

open can install malware on the user's

09:02

device the effectiveness of this attack

09:04

depends largely on the target's level of

09:06

awareness and intelligence if you can

09:07

slow down and think before clicking on a

09:09

suspicious link you're already

09:11

significantly reducing your risk of

09:12

falling victim to it all right I've been

09:15

Arin and I know jack about cyber

09:17

security take care

09:24

[Music]

09:29

m