Daily informative updates for you!

In this post I will talk about two things the first thing I will talk about is : 'What are the most commonly used methods by hackers?'  and last but not least I will post something about how you could protect your website against hackers.

Top 5 methods used by hackers

Hackers nowadays use alot of methods to enter your website and sometimes even hack your personal information or they will use different methods to dump your database and get all the passwords. Below you will find a list of the most commonly used tools by hackers to try and steal your site's information

• Breach in on the web e-mail to receive username and passwords (they use so called 'bruteforcers' this are programs which uses a big list of passwords and trys all the passwords very fast after eachother to try to login).
• Listening to your phone calls and hopefully you will send a unsecured password/username (also known as 'Social Enginering', this means that they will try to convince you that they need to get your personal information for something or to check if your site is secure).
• 'SQL(i) injection (SQL injection is an attack in which malicious code is inserted into strings that are later passed to an instance of SQL Server for parsing and execution. Any procedure that constructs SQL statements should be reviewed for injection vulnerabilities because SQL Server will execute all syntactically valid queries that it receives. Even parameterized data can be manipulated by a skilled and determined attacker.)
• 'PHP injection'
• 'HTML injection' (together with php injection they are almost identical to the sql injection instead they are using php/html codes right now). 

 How to protect your website against hackers

The first option is easily prevented by making your password a hard to guess one and just don't save your password on your pc but write it somewhere down and then hide the paper in a document or a bundled map or something like that. Also you could remove the e-mails which contains trusted information, this will give the hacker a hard time to find important information in the email.

To prevent the opportunity for hackers to get your password through option 2 (spying on your network traffic) you should only type your username and password if you are on a secured webaddres. You can see if a webaddres is secured when the header in the url contains https:// the 's' stands for secure. If the header only contains http:// it means that it is a unsecured connection.

De last 3 options (3,4 and 5) are all direct attacks to the websites. This is a case where a programmer is really important and you must tell it if you are getting attacked. In one of the following articles I will give tips on how you could prevent these kind of attacks (the article will be called PHP security for beginners).