Two big things usually cause people to call me at my computer service company and say they need help with their Wi-Fi: 1. Low signal density (bars) and 2. Low speeds (low Mbps).

I just did a job at a lawyer’s office in Louisville where all the data on the server was encrypted. They almost lost everything. It was a password compromise issue. As more of our lives move online, internet security has become one of the most critical concerns for both individuals and businesses. Cybercriminals are constantly evolving their methods, often relying on simple but highly effective techniques to gain unauthorized access to accounts and systems.Understanding how these attacks work is the first step toward protecting yourself or your organization.
 
Password Compromise Techniques: They are Guessing, Spraying, Harvesting, Cracking, Stuffing.
 
1. Guessing
 
Guessing is one of the most basic forms of compromise. In this attack, a threat actor attempts to log into an account by trying commonly used passwords or combinations based on personal information.
 
Attackers may try:
 
Simple passwords like “123456” or “password”
Names, birthdays, or addresses
Slight variations of known passwords that are often from known data breeches
“The PC Sunflower” (looking for post-it notes with your password over your shoulder at work, or in your home, at the airport, etc.)
 
Why it works:
Many users still rely on weak or predictable passwords, making accounts easy targets.
 
How to protect yourself:
 
Use long, complex passwords
Avoid personal information use as passwords (instead make them random)
Enable multi-factor authentication (MFA)
 
2. Spraying
 
Password spraying is a technique where attackers try a small number of common passwords across a large number of accounts, instead of repeatedly attacking a single account.
 
For example:
 
Trying “Welcome123” across hundreds of usernames
Avoiding lockouts by limiting attempts per account
 
Why it works:
It bypasses security systems designed to stop repeated login attempts on a single account.
 
How to protect yourself:
 
Enforce strong password policies
Use MFA across all accounts
Monitor for unusual login activity
 
3. Harvesting
 
Harvesting refers to the collection of usernames and passwords, typically through deceptive methods like phishing.
 
Common tactics include:
 
Fake emails posing as legitimate companies
Fraudulent login pages that capture credentials
Malicious links or attachments
 
Why it works:
It exploits human trust rather than technical weaknesses.
 
How to protect yourself:
 
Be cautious with unexpected emails
Always verify website URLs
Educate users and employees about phishing
 
4. Cracking
 
Cracking involves using specialized software to break encrypted passwords, often after hackers obtain stolen data from breaches.
 
Common methods include:
 
Brute force attacks (trying every combination)
Dictionary attacks (using common word lists)
Rainbow table attacks (precomputed hash matching)
 
Why it works:
Weak passwords and outdated encryption can be broken quickly with modern computing power.
 
How to protect yourself:
 
Use strong, unique passwords (12+ characters)
Avoid common words and patterns
Ensure modern password hashing is used (for businesses)
 
5. Stuffing
 
Credential stuffing uses stolen username and password combinations from previous data breaches to access other accounts.
 
Because many people reuse passwords, attackers can gain access to multiple accounts using the same credentials.
 
Why it works:
Password reuse is widespread, and massive databases of stolen credentials are easily available online.
 
How to protect yourself:
 
Never reuse passwords across sites
Use a password manager
Enable MFA on all important accounts
Monitor for data breaches
 
Final Thoughts
 
Even though these attack methods vary in complexity, they all take advantage of the same weaknesses: weak passwords, password reuse with mild variations, and human error.
 
By understanding how guessing, spraying, harvesting, cracking, and stuffing work, you can take the needed steps to secure accounts and reduce risk.
 
Cybersecurity doesn’t have to be complicated—but it does have to be taken seriously. Hopefully these thoughts about the common problems I see as an actual computer repair practitioner at my local computer service company and some of these preventative techniques will save you from having to have me or someone like me out after a data loss catastrophe.
 

Lately, it seems like all anyone talks about in the news is Artificial Intelligence (AI). Oddly, I never get any questions from customers about this. Not sure why. Anyway, it has quickly become one of the most useful tools available on modern computers and smartphones. Many people have heard about AI, but they are not always sure how to actually start using it. The good news is that using AI is much easier than most people think.

Today there are several major AI systems that anyone can use for free. These tools can help you write emails, answer questions, research information, summarize documents, help with homework, and even generate images.

The four most widely used AI systems today are ChatGPT, Google Gemini, Microsoft Copilot, and Grok.

Understanding what these tools are and how to access them is the first step to using AI effectively.

Even beginners with very little technical experience can learn to use modern AI tools in just a few minutes.

The Four Major AI Systems Everyone Should Know

Chat GPT

ChatGPT is one of the most popular AI systems available today. It was developed by Sam Altman and OpenAI and is designed to answer questions, help write documents, explain complicated topics, and assist with research.

Many people use ChatGPT to:

• Write emails
• Summarize articles
• Help with school assignments
• Generate ideas
• Troubleshoot computer problems

ChatGPT works through a simple chat interface. You type a question and the AI responds with an answer.

Google Gemini

Gemini is Google’s artificial intelligence system. It integrates closely with many Google services such as Google Search, Gmail, and Google Docs.

Gemini can help users:

• Research topics
• Draft emails
• Generate summaries
• Assist with writing
• Answer technical questions

Because Gemini is built by Google, it often works well for research and general knowledge questions.

Microsoft Copilot

Microsoft Copilot is Microsoft’s AI assistant. It is built into many Microsoft products including Windows, Microsoft Edge, and Microsoft Office.

Copilot can help with tasks such as:

• Writing documents
• Creating spreadsheets
• Summarizing web pages
• Generating reports
• Answering questions

Many newer Windows computers already have Copilot installed.

Grok

Grok is an AI system created by Elon Musk’s company xAI. It is integrated into the social media platform X but it is a separate webpage(formerly Twitter).

Grok can help users:

• Research current events
• Answer general questions
• Generate ideas and summaries
• Provide explanations of complex topics

Grok is designed to be conversational and often focuses on real-time information.

How to Use AI on a Smartphone

Using AI on a phone is usually done through an app.

Most AI systems offer official apps that can be downloaded from the Apple App Store or Google Play Store.

Once installed, the app works just like a messaging system. You type a question and the AI provides an answer.

Many people prefer using AI on their phone because it is convenient and always available.

How to Use AI on a Desktop Computer

Using AI on a desktop or laptop computer is usually even easier.

Most AI systems work directly in a web browser. You simply visit their website and start asking questions.

A good way to keep them handy is to add them to your browser favorites or bookmarks. This allows you to open them quickly whenever you need them.

Many people keep AI tools bookmarked along with their email, banking, and other commonly used websites. You can enable bookmark/favorite bar to show all the time in Edge, Chrome or Firefox.

What Can AI Help You Do in Everyday Life?

Artificial intelligence can assist with many everyday computer tasks, including:

• Writing emails and letters
• Researching topics
• Summarizing long articles
• Explaining technical subjects
• Helping with homework
• Creating outlines for reports
• Generating ideas for projects

AI is not perfect and sometimes makes mistakes, so it is always a good idea to double-check important information. However, despite its limitations AI is quickly becoming one of the most important tools people can learn to use on a computer or smartphone. I encourage all my clients to use it. Many businesses, schools, and professionals are already using AI to write documents, research information, organize ideas, and complete everyday tasks more efficiently. People who learn how to use AI now can save time, work more productively, and stay competitive in a rapidly changing technological world. Those who do not use it will fall behind as AI becomes a normal part of how work and communication are done. Learning how to use AI does not mean replacing human thinking – it means using a powerful tool to assist with everyday tasks and make better use of your time. Learn to use it!

See the photo on this blog post? It’s fake. Every week at my Louisville, Kentucky computer repair business I receive calls from people who believe their computer has been “hacked.” Sometimes the problem turns out to be a virus, sometimes it is a false security warning, and other times it is a tech support scam designed to scare someone into paying money or giving a stranger remote access to their computer. Other times they may have simply forgotten a password to something like their Facebook account.

When something unusual appears on the screen and your computer starts behaving in ways it never has before, it is easy to panic. The good news is that most of these situations can be fixed if you act quickly and avoid a few common mistakes.

Below are some of the warning signs to watch for and the first steps you should take if you think your computer may be experiencing a problem like this.

How Did This Happen?

Some people encounter the problem while browsing the internet when a website suddenly displays a full-screen warning claiming their computer is infected or locked. These messages often include loud alarms or flashing alerts telling the user to call a support number immediately.

Other times the problem starts with an email. Scam emails often pretend to be from companies like Microsoft, PayPal, Amazon, or a bank and warn that there is a security problem with your account. The message may include a link that leads to a fake website designed to steal passwords or install malware.

Phone calls are another method scammers use. Someone may call claiming to be from “Microsoft support” or a security department and say your computer has been sending out spam or has been compromised. In reality, these callers are usually trying to convince you to give them remote access to your computer.

What Signs to Look For

Some unusual behavior on a computer may include your browser redirecting you to unfamiliar websites, new programs appearing that you do not remember installing such as new browsers or toolbars, or the computer suddenly becoming much slower than normal.

In many cases the computer has not actually been hacked by a person. Instead, it has been exposed to malware, or a pop-up has frozen your browser with a scary security message designed to frighten you into taking action such as calling a 1-800 number.

The Most Common Computer Scam Right Now

One of the most common scams I see these days involves fake Microsoft security warnings. A webpage suddenly fills the screen with alarms and flashing messages claiming your computer is infected or locked.

The message often instructs you to call a phone number for immediate help. When someone calls the number, the person on the other end pretends to be a Microsoft technician and asks for remote access to the computer.

Once connected, they may run a few commands, claim they discovered serious problems, and demand payment to “repair” the system. In some cases they also attempt to install additional software or collect personal information.

It is important to understand that Microsoft does not display warnings asking you to call a phone number, and legitimate security alerts do not lock your browser this way.

What Not To Do

If you believe your computer may be compromised, there are a few things you should avoid doing.

Do not call the phone number shown in a pop-up warning. Those numbers almost always connect you to scammers.

Do not give anyone remote access to your computer unless you contacted them first and know exactly who they are.

Do not enter credit card or banking information into a suspicious website.

And do not immediately reinstall Windows or erase the computer unless you have already backed up important files.

What You Should Do Right Away

If you encounter a suspicious warning or believe malware may be active on your computer, the first step is to disconnect from the internet. This can stop malicious software from communicating with outside servers.

Next, restart the computer. Many browser-based scam warnings disappear after a reboot because they are only trapped inside the web browser.

If you believe your passwords may have been exposed, change them from another device such as a phone or a different computer.

Finally, it is often best to have the computer examined by a professional.

When It Is Time To Call a Technician

Some situations require professional help as soon as possible. A compromise like this is often considered a computer emergency, so it is important to call a professional right away.

If your computer is locked with a ransom message, if important files seem to be missing, or if you entered sensitive information into a suspicious website, the system should be checked immediately.

A technician can remove malware, look for hidden remote access software, repair any damage caused by the infection, and secure the computer so the problem does not happen again.

Chris Calkins owns On-Site Louisville Computer Repair Company in Louisville, Kentucky and has been repairing computers for residential and business customers for over 30 years. He writes about real-world computer problems, scams, and technology issues he encounters every day on the PC News blog.