I think phishing is by far the most common way to get passwords.
I saw a guy at work fall victim to one. Looks like it's from some customer he knows, links to document on Office365 or similar, enter username and password and swearing because it's "lost them".
I think phishing is by far the most common way to get passwords.
I saw a guy at work fall victim to one. Looks like it's from some customer he knows, links to document on Office365 or similar, enter username and password and swearing because it's "lost them".
I went, "What URL is that?"
He looked at his screen for a second. "Fuck."
"How many passwords have you given it?"
"My work ones and my bank ones."
"Better change those then, hadn't you?"