Think your Google Gmail is safe? Think again!
Yet another flaw in Gmail was recently revealed by security researcher Vicente Aguilera Díaz, who has found previous flaws in Gmail. He found a back door allowing bad guys to repeatedly guess Gmail passwords.
According to his new alert, Google lets anyone with a Gmail account guess another Gmail user’s password 100 times every two hours, or 1,200 times per day.
No “captcha” keeps hackers from guessing passwords and, worst of all, this is per account so if a hacker controls 10 Gmail accounts that’s 12,000 guesses a day, 100 accounts, 120,000 guesses a day, etc.
Gmail accounts cost nothing and it would be easy for a hacker to control a lot more than 100 accounts, I’m sure most control tens of thousands of accounts, if not more.
Then, with a simple software program, a password cracker bot, it would be very easy to “harvest” the password from thousands of Gmail accounts, giving the person complete control over your account and access to all your personal mail and information.
While Google requires the bare minimum for a secure password, 8 characters, they put no other security measures and you could create extremely weak passwords list “aaaaaaaa” or “password”; a lot of people actually do use those.
Fortunately, there is a simple way for you to protect yourself from this problem.