blog posts

What Tricks Do Hackers Use To Obtain Passwords For Their Prey?

We live in an age where passwords have become one of our most common tools for maintaining the security of our information and accounts, such as bank accounts, website accounts, social network accounts, and so on. 

But hackers are always in ambush and passwords are not safe from them. But have you ever wondered how a hacker gets passwords

Some of the methods used by hackers are much simpler than they seem. 

The 7 main tricks that hackers use to obtain passwords for their prey are:

  • Dictionary
  • Brute Force
  • Phishing
  • Social Engineering
  • Rainbow Table
  • Malware / Keylogger
  • Spidering

In the following, we want to introduce the first three techniques to you.


One of the most common methods a hacker uses to obtain passwords is a dictionary. In fact, the dictionary contains a list of the most commonly used passwords that users use, such as 123456, password, qwerty and many other examples that we may have used over and over again.

 A hacker tries all these simple and commonly used passwords to hack your account, so maybe one of them is your password; If you choose a single password for all your accounts, the situation will get worse because hacking one of them means hacking all your accounts! 

For this reason, we recommend that you choose a separate, unique, and complex password for each of your accounts. Because the passwords in this dictionary are hacked very quickly by hackers.

Brute Force

In this method, the hacker tries all possible combinations of characters to obtain the password. But in this method, the hacker starts his work again using the widely used combinations in the dictionary technique.

 In this method, the hacking time that the hacker needs to obtain passwords varies depending on the length of the characters that you put in your password, and there can be symbols such as !, {,},], [, @, etc. Make it very difficult to hack the password through this trick.

 So do not forget to use these characters in passwords.


The phishing attack is not as strong as the hack, but unfortunately it has caught many users today. In this type of attack, the hacker designs a website with a fake address that is very close to the original address and is exactly the same as the original website in terms of graphic design.

 It then sends this address to the user via email, etc. At first glance, everything seems to be right and the user thinks that he has been directed to the main and reputable website.

 He then enters his information, such as his bank card password, and this is where the hacker reaches his target, obtains his account information and abuses it. 

For this reason, it is very important to pay attention to the website address (exact website URL).

In the second part of the article, follow the other tricks that hackers use to obtain passwords.