Guccifer, the alias of an infamous Romanian hacker whose real name is Marcel Lazar Lehel was extradited by Romanian authorities to the United States and had his first appearance last Friday before a federal judge to answer a nine count indictment related to his hacking of the emails of a number of celebrities and politicians. In fact, it was Guccifer who first exposed the fact that Hillary Clinton, while Secretary of State was using a private email server for government purposes when he hacked into the email account of one of her advisers, Sidney Blumenthal and found that Blumenthal sent Clinton detailed memos to the personal email address of firstname.lastname@example.org rather than her government email address. Among the other famous people whose email accounts he hacked were Steve Martin, Colin Powell, George W. Bush, John Dean, Mariel Hemingway, Lorne Michaels, Carl Bernstein, Rupert Everett, Eric Idle, Whoopi Goldberg and Julian Fellowes the writer of “Downton Abbey.” Although Guccifer hacked into the email accounts of many entertainers and politicians, he did not exploit his hacking targets for financial gain even though the information he obtained would have allowed him to do so. Rather his goals, more often, appeared to be to embarrass his victims and shake the world up a bit. Through hacking of his victims’ email accounts he gained access to and made public the final episode of Downton Abbey, months before it was aired. He also made public embarrassing information he obtained through his hacking efforts of politicians and celebrities on both sides of the Atlantic including allegations that former Secretary of State Colin Powell had an affair with a European Parliament member, Corina Cretu.
One technique Guccifer used was to get an email address of someone, such as he did with media icon, Tina Brown, who has an extensive email address book and harvest more email addresses there of the rich and famous. He then used simple techniques to answer his victim’s security question and change the password to the account whereupon he was able to take over the account and have access to all of the information stored there. Simple, publicly available information such as birth dates, schools attended and other such information provided the keys to answering the security questions of his victims. He also apparently used lists of the name of pets to answer security questions as well. And herein lies the lesson for us all. Even if you are not a celebrity, there is so much information about us all that is publicly available. Sometimes the information is even provided by us through our Facebook pages and other social media, making it is an easy task for a hacker to get at our email accounts and other password and security question protected accounts.
Protecting your email address is a difficult task. The key to protecting your account from being hacked is to have strong security questions because it is often too easy for a hacker to guess the answer to common security questions and gain access to the password for your email account. The key to an unbreakable security question is to have an answer that can never be guessed by a hacker. So if your security question is “What is my favorite vegetable?” you should make the answer “fire truck” or some other totally illogical response. Don’t worry about remembering it yourself because if the question and answer are as ridiculous as this, you will remember it.