Ethical Hacking - Email Hijacking

Email Hijacking

Email Hijacking, a common menace uses some of the techniques like email spoofing, social engineering tools, or inserting viruses in a user computer.

Email Hijacking

Email Spoofing

An email is sent by a spammer from a known domain misguiding the receiver to open the mail, as it is from a known source. These mails usually have suspicious links, doubtful content, requests to transfer money, etc.

Email Spoofing

Social Engineering

Promotional mails offering huge discounts are sent to different users by the spammers to trap them to provide their personal data. An email can be hijacked by some of the tools are available at Kali.

Phishing techniques can also be used for email hacking.

Phishing

Malware on the user’s system can be installed or user is redirected to a malicious website by the links in the email, which make the user provide personal and financial information like account and credit card details, passwords etc.

Usually cybercriminals use Phishing attacks, as it is simple. By clicking a malicious link in the email, the user can be easily trapped.

Inserting Viruses in a User System

By Injecting virus or any malware to the system, the email account can be hijacked. The virus helps the hacker to get the passwords.

How to detect if your email has been hijacked

  • The recipients of spam emails include a bunch of known people.
  • Password no longer works when the account is accessed.
  • The “Forgot Password” link when tried to access does not go to the expected email.
  • Bunch of spam mails lie in the sent item folder, which are not sent by the user.

Quick tips

The actions to be taken when an email is hijacked are:

  • Passwords need to be changed immediately.
  • Friends need to be notified not to open links that they receive from your email account.
  • The authorities need to be contacted and reported that the account has been hacked.
  • Install a good antivirus on the computer and update it.
  • Set up double authentication password if it is supported.