Pin It

Top 10 Ways How Hackers Can Hack Facebook Accounts In 2012


Facebook is one of the most widely used social networking site with more than 750 million users, as a reason if which it has become the number 1 target of hackers, I have written a couple of post related to facebook hacking here at RHA, In my previous post which I wrote in 2010 related to facebook hacking and security 4 ways on How to hack facebook password, I mentioned the top methods which were used by hackers to hack facebook accounts, however lots of things have changed in 2012, Lots of methods have went outdated or have been patched up by facebook and lots of new methods have been introduced, So in this post I will write the top 10 methods how hackers can hack facebook accounts in 2011.


10 Ways How Hackers Can Hack Facebook Accounts In 2011

So here are the top 10 methods which have been the most popular in 2011:


1. Facebook Phishing 




Phishing still is the most popular attack vector used for hacking facebook accounts, There are variety of methods to carry out phishing attack, In a simple phishing attacks a hacker creates a fake login page which exactly looks like the real facebook page and then asks the victim to login into that page, Once the victim logins through the fake page the victims "Email Address" and "Password" is stored in to a text file, The hacker then downloads the text file and get's his hands on the victims credentials.

I have explained the step by step phishing process in my post below:

2. Keylogging 

Keylogging, according to me is the easiest way to hack a facebook password, Keylogging sometimes can be so dangerous that even a person with good knowledge of computers can fall for it. A keylogger is basically a small program which once is installed on victims computer will record every thing which victim types on his/her computer. The logs are then send back to the attacker by either FTP or directly to hackers email address. I have dedicated a half of my newsest book "An introduction to keyloggers, RATS And Malware" to this topic.

Ethical Hacking Book
3. Stealers 



Almost 80% percent people use stored passwords in their browser to access the facebook, This is is quite convenient but can sometimes be extremely dangerous, Stealers are software's specially designed to capture the saved passwords stored in the victims browser, Stealers once FUD can be extremely powerful. If you want to how stealers work and how you can set up your own one?, Kindly refer the book above.


4. Session Hijacking




Session Hijacking can be often very dangerous if you are accessing Facebook on a http:// connection, In a Session Hijacking attack a hacker steals the victims browser cookie which is used to authenticate a user on a website and uses to it to access victims account, Session hijacking is widely used on Lan's. I have already written a three part series on How session hijacking works? and also a separate post on Facebook session hijacking.


5. Sidejacking With Firesheep


Sidejacking attack went common in late 2010, however it's still popular now a days, Firesheep is widely used to carry out sidejacking attacks, Firesheep only works when the attacker and victim is on the same wifi network. A sidejacking attack is basically another name for http session hijacking, but it's more targeted towards wifi users.

To know more about sidejacking attack and firesheep, read the post mentioned below:

6. Mobile Phone Hacking



Millions of Facebook users access Facebook through their mobile phones. In case the hacker can gain access to the victims mobile phone then he can probably gain access to his/her Facebook account. Their are lots of Mobile Spying softwares used to monitor a Cellphone.

The most popular Mobile Phone Spying softwares are:

1. Mobile Spy
2. Spy Phone Gold

7. DNS Spoofing 


If both the victim and attacker are on the same network, an attacker can use a DNS spoofing attack and change the original facebook.com page to his own fake page and hence can get access to victims facebook account.




8. USB Hacking 

Usb password stealer
If an attacker has physical access to your computer, he could just insert a USB programmed with a function to automatically extract saved passwords in the browser, I have also posted related to this attack which you can read by accessing the link below:
9. Man In the Middle Attacks


If the victim and attacker are on the same lan and on a switch based network, A hacker can place himself b/w the client and the server or he could also act as a default gateway and hence capturing all the traffic in between, ARP Poisoning which is the other name for man in the middle attacks is a very broad topic and is beyond the scope of this article, We have written a couple of articles on man in the middle attacks which canb be accessed from the links mentioned below:
If you are really interested in learning how man in the middle attacks, you can view the presentation below by oxid.it.

10. Botnets 


Botnets are not commonly used for hacking facebook accounts, because of it's high setup costs, They are used to carry more advanced attacks, A botnet is basically a collection of compromised computer, The infection process is same as the keylogging, however a botnet gives you, additional options in for carrying out attacks with the compromised computer. Some of the most popular botnets include Spyeye and Zeus.


Facebook Hacking Course




Facebook hacking course is a facebook security course created by me, which tells you exactly how how hackers can compromise your facebook accounts and what can you do to protect your facebook accounts from getting hacked.

Click here to get access to the course

Hope you have enjoyed reading the post as much i did while writing.

Note: Copying or reproducing this article is strictly prohibited and will lead to certain consequences, If you are reproducing or copying this article, make sure that you give a proper credit.

Subscribe to our Newsletter and receive updates directly via email - Get Ethical hacking and security tips directly to your inbox. Alternatively you can Join our Hackers Community on Facebook , Google+ and Twitter .

At RHA Infosec we provide different types of Security Testing from small business sites to Corporate Sites. Click Here to know more about our complete list of services.

Subscribe to RHA


Enjoyed this article?
Subscribe to "Rafay Hacking Articles" and get daily updates in your inbox for free!


Tags:


Kindly Bookmark it and Share it with Friends:

53 comments :

Aleksandar on August 14, 2011 at 11:59 AM said...

Very good, keep going.

shaikh &friends on August 15, 2011 at 10:25 PM said...

rafy bhai i awanna persnoly meet with you if you are agree so i have a new idei for you
+92-345-6162836
it is my persnol contact number

11 said...

plz write more on DNS spoofing

Anonymous said...

can u hack my fb account???????///

jeetpatelindia1@gmail.com

if u can then it will great pleasure for me.....

Anonymous said...

Always I was wondering about Facebook hackers but now this is cleared up

Anonymous said...

Hi,

I think my fiancee is hiding something from me. In other words, sleeping with another guy. Her profile weblink is:

http://facebook.com/nmsisg
her id=1032585243
Massiel Galan

I need help from someone that can help me view this profile. I know she is hiding something from me… I just need to verify.
Please help! I am lost…

Gare

jehanzeb said...

many web hosting sites like ripway,yourfreewebhosting suspend u from making phishing sites!!!! so which site shud i choose to make phishing site

jehanzeb said...

many webhosting sites such as ripway,yourfreewebhosting suspend ur account so which site shud i choose for phishing???

Anonymous said...

ways are very good but buddy there is not another way cause all are in physical or connected to wi fi or lan so its not worth for me!
and phishing pages are cant uploaded!

saga on November 29, 2011 at 7:22 AM said...

hey where do you found this theame.
please tell me.

Anonymous said...

wich is the better way to hack an account from away abd not on the same network or wifi connection??

Anonymous said...

I read all ur post..i need ur help. Cn u get me paswd for this email..
tasmimmdsaad@yahoo.com
...ths is my fiance..she cheating on me..i want to know the truth..she unfriend with me on fb,if u c her account u cn c engaged to anuar zakaria. I cnt take ths anymre,we suppose to be married ths 24 disember 11. I rely need ur help man. My email kilroy87@yahoo.com. Pls help me. I rely just cnt take it anymre. Help me smeone...
Last time i open her fb,i c sme guy call her darling,i ask her bt she said dnt knw anythng abt it. It rely2 break my heart. Help me

Anonymous said...

I want something Very easy process to hack a facebook account or password. please email it to me if u have done it. (e-mail id:- addy_gaurab@yahoo.com) Please.

achmne on December 10, 2011 at 9:59 AM said...

Hiii ,
can you help me out at the phishing steps..........i did that and nw what i do ,,,,,,see the pic and reply me plzzzz as soon as possible =))))))
Take care.
http://www.4shared.com/photo/ZFgf5DDp/IMAD_3.html

achmne on December 10, 2011 at 10:14 AM said...

there is a photo of what i did ,,, can you help me out with this ???
http://i42.servimg.com/u/f42/12/12/13/29/imad_b10.jpg

Anonymous said...

Nice post....good info...but you forgot "Brute Forcing" method????
I Know That It is not efficient,takes time...but still one of the methods....plz add it also....
That is a suggestion for you Rafay....

Can you provide a list of precise Google dorks that Will help to find RFI Vulenerable websites......Because most of the dorks i found are useless....can you provide a list.....??? it would be of great help...
Thx

Rohan Sharma
Owner And Founder
www.thehackersview.in
email:admin@thehackersview.in

Rafay Baloch on January 2, 2012 at 9:13 AM said...

@Anonymous 16
Brute forcing does not work against facebook due to the capacha that get's enabled after few unsuccessful login attempts. Plus your account get's locked after every 25 unsuccessful attempts. Furthurmore a bruteforce attack generates huge log of presence on the server side as a reason of which I completely ignored it.

Talking about RFI, it's a very rarely found vulnerability. As register_global and allow_url_open files are disabled by default on latest configured servers.

Anonymous said...

hi..my fb account had been hacked for several times..even i already change my password.yesterday i try to delete my fb account but its said my account only can be delete after 2 weeks if im no longger log in to fb but i was wondering in 2 weeks is there any possible that the hackers will use all my personal info in my fb???

Anonymous said...

i wanna hack my friend's fb account. i have paypal. i can pay. email me at farid-zero@hotmail.com

Anonymous said...

i wanna hack my lovers facebook,and all i want to do is be able to guess his password. any ideas on what guys usually make their password?

Anonymous said...

can i hack a deactivated account???

Anonymous said...

Hi i need to hack a fb account. I dont have an email address or password, all i have is thier full name. Can anyone help me please. Email me at milesdavies@live.com.au

Anonymous said...

deos it really works

Anonymous said...

hey rafee bro...can u help me hack someones account by any of the techniques?? i will owe u one big time bro..i will do anythin bro...

Anonymous said...

Hello Rafay, my name is Anna. I wish to ask you, is there any method to hack a fb page without knowing email or without being in the same wifi or lan. Oh, and I cannot access the victim's computer. Basically, no connection! Well, thanks!

amine on April 5, 2012 at 5:04 AM said...

heiii..i really need ur help..and it didn't work with me this methods...i need to hack a facebook of a friend of moine..plzz help me...this is my email..azzou_kh@hotmail.fr

Anonymous said...

Can you help or do plz email shaytay38@gmail.com

Anonymous said...

naice job

Anonymous said...

i need to hack someones fb account..can u help me out?its like really important..please..

Anonymous said...

hey can u please hack this fb account for me https://www.facebook.com/profile.php?id=100003118111572&ref=ts
because he always send a pervert things to me
please it will grateful if u can :D

if u done can u email me at adibx10@gmail.com
please!!!! pleae!!! I begging you

JG on April 27, 2012 at 7:28 PM said...

https://www.facebook.com/profile.php?id=1273023193
Can you please hack this account for me please,it would be a great help and can you send the username and password to my email { johan_gladston2011@hotmail.com}

Anonymous said...

i dont find any rply to those who has askd q???????s U r just fake

Anonymous said...

Great info... If your on a public wifi spot on a secure page (https) it is possible like for hackers to "sniff" your SSL traffic.. This means they can swipe your passwords - email, facebook, banking, ect.... Don't believe me? Just google the word "faceniff". It's an android app that is designed to steal fb passwords with ease.

The ONLY way to secure your personal safety on public wifi netoworks is through a VPN. An OpenVPN connection like offered by TorGuard.net will create an encrypted traffic tunnel that hides your traffic on the local wifi network. Using a VPN is the only way to guard your privacy at a public wifi hotspot.

Rafay Baloch on June 13, 2012 at 11:03 AM said...

@Anonymous 33
Very true.

pushpak jaiswal on June 18, 2012 at 11:52 PM said...

contact me to hack any facebook account..... pushpakpushpakmm@yahoo.com

okhellu on August 2, 2012 at 3:01 AM said...

the link has died....can u send me another link
phuthuynho93@gmail.com

Anonymous said...

itz works thanks

Anonymous said...

I NEED YOUR HELP

Panji on September 11, 2012 at 1:12 AM said...

thanks for posting
i like this

Anonymous said...

i need Ur Help Plz !

F.b " the Anas shooter "

im Watting youuuu ...

Anonymous said...

is there a way more simple then that to do this,?

Anonymous said...

can 99% of you say Trojan - Jon Doe.

Karan Dumpala on October 4, 2012 at 1:47 AM said...

HELLO BROTHER...My brother is MISSING from 1 year.we hav tried everything and everywhere but no use. We are thinking dat my brother has logged into FB.Can u get me the place he has logged in by hacking his account.pls tell me a solution for that.
MY PARENTS ARE BECOMING SICK DAY BY DAY.
IF U CAN SOLVE OUR PROBLEM U COULD SAVE MANY LIVES.
PLS REPLY ME
MY EMAIL ID: karan.dumpala@gmail.com
WAITING OR UR REPLY

Anonymous said...

Can you update your facebook hacks because facebook can block phishing sites now. And forget password method is not working now. I am wondering if there is another updated hacks now 2012?

Anonymous said...

Can u plz write clearly in a new post..steps wise process..how to hack FB using Istealer and Tabnabbing

Anonymous said...

i think my husband is checting on me can you help me plz

Anonymous said...

good work bro

arsalan khan on April 7, 2013 at 1:01 AM said...

can u tell me how to hack facebook account with the help of video

Daniyal on April 17, 2013 at 11:32 AM said...

Hi, Rafay i wanted to know if you can somehow get to know who is the admin of a particular page on facebook without asking him ??? is that possible ??? if it is do post about it

Anonymous said...

nice post
http://magicbots.blgospot.com

Anonymous said...

Is it possible to hack into someones facebook account and delete their friend profiles?

Anonymous said...

this article's really good

Anonymous said...

hi i wanted to know if you can recover my password thank you

Dare to ask? :)

Blog Archive

 

Recent Comments

About

Rafay Baloch is an Independent security researcher, Internet marketer, Entrepreneur and a SEO consultant, He is the founder of RHA blog and multiple other blogs. Rafay got famous after finding a Remote Code Execution bug inside PayPal for which PayPal awarded him a sum of 10,000$ Read More..

Join In!

RHA © 2013. All Rights Reserved.