How easy it is to crack your browser's passwords in 5 seconds.... and how to defend yourself against it.

in #security7 years ago

anonymous.jpeg

Before I show you how easy it is to break the password stored in your browser, please read some of these facts.

Facts

  • In 2016 Symantec blocked more than 1 million attacks through a web in one single day and so, day by day throughout the year.
  • Hewlet Packard Enterprise published a report showing that attacks through theft of devices ranged from 6% to 12% depending on the country.
  • On the other hand, attacks based on Web amount to 12% to 21% of all attempts.
  • The website StatisticBrain.com also published interesting statistics. It results from them that 75% of employees have robbed their employer at least once.
  • 33% of such thefts led the company to bankruptcy.

As you can see, the problem is so serious that various kinds of protection are invented.
Login systems are the easiest to implement.
And so, more and more websites want our password.

Do you want to buy a movie or a book from an online shop?
Enter your password.

Would you like to see what your friends do on some social networking site?
Enter your password.

Would you like to see the last episode of your favourite TV series?
Enter your password.

Soon it will not be possible to check the weather without a password.

Of course, each service has a different security policy.

Lower case letters, capital letters, special characters, minimum number of characters.

And finally change your password because 30 days have passed since the last change.

Now remember what password was used for which page.

Naturally, the authors of web browsers want to make life easier for you and give you the opportunity to save passwords in their products.

If they give you such an opportunity, why not use it?

After all, the passwords are encrypted in your browser.

And what does he have to do to get to know them?

Yes.

Enter your password.

Nothing could be more wrong.

A short instruction how to reveal the password..

It is enough if someone curiously has access to your browser, and in less than 5 seconds he or she can get to know your super secret password.

Would you like to see how?

This manual applies to the Chrome browser. However, the principle of operation is similar on Firefox or Edge.

For the purposes of this article I have prepared one simple page for you, which will allow you to get to know the password on it.

  • Open this website in the new tab.
  • You should see a simple form consisting of only one field.
  • Then type any word there.
  • Now right-click on the text you have typed and select "inspect" from the popup menu.
  • If you have done everything correctly, you should have this code highlighted.
  • If you do not see it, you press Ctrl + F and type in the word "password".
  • In the code you found, you can double-click on "password" for editing.
  • You enter the word "text" in this space.
And Voila!

Super-secret password is no longer so super secret.

Prevention.

How do you protect yourself from this?

The only method is not to save passwords in your browser.

However, how can you delete passwords already saved?

  • Open the settings by typing chrome: //settings/ in the address field.
  • Click on Advanced at the bottom of the screen.
  • Then find the "Manage password" option.
  • After selecting it the first thing to do is to switch the password memorization.
  • The next step is to remove each saved password from the list step by step.
  • You do this by clicking on the three dots on the right and selecting delete.

The job is done. Your network security has increased.


If you liked the article, I will ask you for Upvote.

If you want to help others, share this article by clicking on the resteem button.


Remember that this article has been created for informational purposes only, and any violation of the law should be reported to the local authorities.

Sort:  

one question, does this mean if you can access anyone computer you can then retrieve all their stored password on the google chrome?

Yes, you just have to go to any page. This also applies to other browsers.

that would be suck, how do you secure your steemit account then? you cant type the password everytime do you?

For example you can use password manager from third party company. You can read about it here http://lifehacker.com/5529133/five-best-password-managers.

Congratulations @elded! You have received a personal award!

1 Year on Steemit
Click on the badge to view your Board of Honor.

Do you like SteemitBoard's project? Then Vote for its witness and get one more award!

Congratulations @elded! You received a personal award!

Happy Birthday! - You are on the Steem blockchain for 2 years!

You can view your badges on your Steem Board and compare to others on the Steem Ranking

Vote for @Steemitboard as a witness to get one more award and increased upvotes!