Our Expert Advices

Computer Security

Although the techniques for securing the web are becoming more powerful, there are still many methods to hack into Facebook, Windows Live Messenger or other social networks. Of course these methods are far from miraculous being based on social engineering. Indeed it requires the intervention of the account owner and forces him to commit an action that leads him to disclose his personal information.


Among them there are:

Phishing
The user is redirected to a site resembling that of the service provider. When it identifies, he is redirected to the real site, but the hacker gets on the fly the login information. Of course this method has its flaws because the address of the fake site cannot match the actual address of the supplier, the attacker is obliged to communicate the address of the fake site and ask the victim to click a Link. This is why a person a little bit informed readily understands that it is not the right site and it is therefore a phishing.
Reverse
The reverse is a technique using a "human" flaw in service providers. The hacker tries to impersonate the author of the account by claiming to have lost their password or have been hacked. It uses the tools of recovery passwords provided by the service provider and knows much important information about the victim (date and place of birth, name of pet, maiden name of mother...). Although this technique has tended increased in recent years, the number of hacking related to this method is significantly lower. Indeed suppliers are now secured using other safer ways to identify account owner such as SMS or redefining the credentials by a trusted computer.
Keylogger
The Keylogger are programs that record the keyboard strokes. This kind of program is very efficient because you have access to all information of your victim. There are many keylogger on the internet but it is the black sheep of antivirus programs. Of course this kind of program is easily identifiable because it is very suspicious and cannot "hide". Using this type of programs is at your risk, because the person you are trying to spy will soon realize that you sent a virus.
The Other Methods
There are other methods like sniffing and analyzing network frames to a public wireless access point. Many people use the "clear" navigation (without using HTTPS). This allows hackers to easily retrieve the login information. Of course this type of hack does not target a person unless its wireless network is within range and that it is open mode which is very rare.


How to prevent hacking or spyware? As we have seen in over 99% of cases, user intervention is required. This means that when someone's account is hacked it's because the user was careless. Of course, users pirated often unaware of having committed a foul. Leading them to believe that this is the service provider that has a fault, but it is not the case. A simple click on a link allows communicating a password to a third party and takes you to lose your login information. To keep your account, a single safe technique, caution

top

Prevent the Scams

In the previous article we discuss the fact that many users are unaware that the diversion of their login information was done through an act they committed. This is why many people believe that there are quick solutions, great websites that by a single click, you can find your password. Of course all these sites are scams.


« Why these sites are scams? There is no one that works well in the lot? »

No, no one. They are all fake. It is not technically possible for a website to allow you to find your credentials for the simple reason that service providers no longer store in their databases.


« So how does the site to recognize my password? »

It's simple. When you create your account, your password is stored as HASH. A Hash is a calculation of the sum of the letters (Checksum). To keep things simple we will say that each letter a numerical value (A = 1, B = 2 ...). When creating your account, the server will calculate the HASH of your password like this:


Your password: snoopy

(S = 19) + (N = 14) + (O = 15) + (O = 15) + (P = 16) + (Y = 25) = 104

104. This is what will be stored in the database of the website. When you connect to the site and you send your password the server will perform the calculation again and compare it with the result stored in the base. Of course the computation of HASH is much more complex in reality. The sample given here is simplified to allow you to understand the foundation: The HASH is irreversible.


Like with the result 104 you can't find the password "snoopy", a website claiming to hack a Facebook account for example, can't retrieve the real password and even if it actually had access to the database via a security hole. Of course some argue decrypt the HASH. It is not possible because the HASH is not encryption but a calculation. At most you with the number 104 as a list of possibilities, which can be shorter, or longer (100 + 4 or 90 + 10 + 4 or 70 + 10 + 10 + 4 ...).


For the curious ones here is the true method of HASH.


« But why so many site? »

It's really simple. This kind of site is always paying, mostly by audiotel. Moreover they are based on your "hope" to find your login information; they know that once you have been having a site, you will be coming back more. This is why some authors have dozens of this kind of site. You will therefore understand to avoid scams simply avoid any website promising you to hack an MSN or Facebook with one click and in a few seconds. The hacking is always complex.

top

How to Succeed

With the above, you may think that getting connection information is impossible. Yet thousands of accounts are hacked daily. But there is an enormous difference between mass piracy and the hacking of one target. Mass piracy is simple, just drop a trap on the internet with the chosen method and wait for users to bite. But targeting a person is mostly complex.


With our products you can target the person of your choice. Of course it will make him run a program for you to have a chance to get their logins. This is a huge constraint and you wonder if there is no easier way but remember what was said above. It is better method with constraints and likely to function rather than a method that promises you the moon but offer no chance of good result.


With SpyMail you must send the program to the targeted person. Of course you must be creative. If you talk to this person and tell him that you send picture for example, the person will see it as an executable and it will be wary because you lie about the nature of the file. It is better to tell that person that it is an executable into believing that this is a game or application in relation to his hobby. Do not hurry! Think carefully about the turn of the message, chat with the person targeted before, do not pass on to action "hello, I sent you...". No, talk to a few minutes and you attract the confidence of that person. Offer to send later in the application. Of course you are not obligated to send it by e-mail. Any other means of transfer is also valid (Windows Live, Online Hosting, FTP ...). The important thing is that the recipient receives the file.


If it's a person to do something new, you can create a false identity. For example if it is a man you can create a profile with a photo of the woman physically attractive. Stay clear, do not put pornographic photo you would spend for a spammer. A photo of a pretty woman with a profile as single lady advantage will attract the attention of your target.
Similarly, do not pass on to action immediately. Ask the friends of that person as a friend, and then wait some time to ask the target person as a friend. The probability that the person accepts your invitation will be higher if you have friends in common. Once contact is made, take your time to go into action, talking, you invent a life story. When you feel the moment, for example pretext want to do a video conference but your current software does not work. Pretend to know a software video conference with your work and then offer that person to send it to install it. If she accepts you won. This is just one example but you can operate in multiple ways, be creative, inventive...


As you can see, get connection information can be lengthy and complex. Providers of services like Facebook, Twitter, Windows Live and other social networks work every day hard to secure their network. Do not think that it is easy to find such information as your initiative will not succeed. Each case is different, so you can contact us for help on this. Using our products you are solely responsible for the actions you commit. Information theft is punishable by law. You must not use our products for information that does not belong to you.

top

A Discrete Method

When you look at our products and their methods of operation you have probably asked the question:


« It is discreet? The person I sent the application will she informed my attempt to get his logins? »



This question leads to a more logical reasoning. Of course our applications have been founded for this purpose and everything has been designed so that you can remain anonymous.


Since purchasing the use you are not obligated to provide your identity. The purchase is doing through your email; you are not required to use your personal address. You can use a free email address like Yahoo or Gmail, created for the occasion. SpyMail and SpyUSB display a customizable error message that by default suggests a compatibility error.


When the target executes the program, this error message is displayed. And the person simply believes that the application does not work on his computer. At no time she is informed of the report was sent on your mailbox. Everything happens in the background thread.


SpyMail SpyUSB or are not detected by antivirus software as threats. We regularly update our programs to ensure that this does not happen. Once acquired your license, SpyMail or SpyUSB will automatically update. Furthermore we want to provide users with a report form in case of detection of our programs. Each report leads to an update a few hours after receipt thereof if necessary.

top

Some testimonials

Here are the testimonial of people we have shown their thankfulness.


Thank you really for all you has truly helped me without you I never could find my Facebook. I would talk about your programs around me.

Caroline, Bourg-De-Bigorre.
Thank you for your support, I really did not think that your program really worked and I did not expect this result.

Gilles, Paris 12e.
Thank you very much. With your program I was able to prove the guilt of my husband had a mistress. Although I suspected strongly, I still was very shocked to get the confirmation but I also relieved a weight. I really want to thank you for helping me because I am not good with the computer, without your help I could not succeed. Since I recommend to everyone around me is your products.

Christine, Seine-et-Marne (77)
Your software is great, I'm really happy. I have been on other sites and I always have but do not you. You are the boss of hacking!

Samira, Val-de-Marne (94)
Programs work perfectly and easy to use. I am very satisfied of your software.

Julien, Vaucluse (84)

The WEB-Tool'Z Team gratefully acknowledges their appreciation to these people
Feel free to send us your stories and your experiences. We will publish them on our website to your request.