Hackers’ Common Practices

Here are some common practices of hackers: 

1. Phishing: posing as a trusted organization and trying to scare you by claiming your account has been hacked, your account is locked, or your account is about to expire; this is followed by an immediate action such as clicking a link or telling them your account details 
2. Piggybacking: they tell you they forgot their key card/password and ask for your help. They are usually dressed up in an official uniform to pass through security. They may walk in with their hands full and ask for help to gain access to the building. They may tell you they have been locked out of or forgot their computer and ask if they can borrow yours. They may also wait near an entrance and simply follow someone who holds the door for them into the office. 
3. Pretexting: claiming to be an authority figure and asking for your information in order to complete a task. Hackers may even try to befriend you outside of work to get your personal information or they may claim to be an employee so you will trust them and let them in the building. 
4. Pharming: hackers will use almost identical URLs, except with minor typos or a different suffix (.net, .com). The fake website will look legitimate. Hackers may replace certain links in emails or online to redirect you to their fake site without you knowing. 
5. Social Media: clickbait is the most common way to get users to click on malicious links.  Clickbait can be interesting stories, tending topics, controversial posts, or “too good to be true” posts. Hackers can also contact you through social media messages and use phishing or pretexting methods.