Monday 10 July 2017, Safety Guide
Password reset process can lead to the account takeover and identity theft

Lost24
The Israeli scientists from the College of Management Academic Studies have proven that even the inexperienced hacker can take over the user's internet accounts by exploiting the existing vulnerabilities in password reset procedures.
The researchers have dubbed the hacking technique as Password Reset Man-in-the-Middle (PRMitM). They have also warned that Google's servers are particularly susceptible to this type of attack. This does not mean, however that other sites or e-mail services (like Facebook, Yahoo, LinkedIn, Yandex) are completely resistant to the PRMitM attacks.
In order to carry out the attack, the hacker first needs to create a website, offering the users a free services, free software, or some other free content that can only be