Watch This Russian Hacker Break Into Our Computer In Minutes | CNBC

So I am joined here by Mikhail Sosonkin from Cenac You're gonna show how easy it is to hack into a computer so this is my personal computer. So in this attack we will pretend to be a wireless access point that you normally connect to let's say in a hotel so if you go in there and you try to log into something called Four Seasons guest Okay As you expect the wifi is around you'd want to be able to connect to it and a person who just arrived will think I'm a guest I should connect to the guest network Sure So now if you go to a website that you would normally use like Yelp. com.

Okay And you know normally what happens when you go to a website just after you've logged into a hotel network it says, "oh please log in you're a new user" So here it's asking for your room number and last name which you'd normally do and actually I can see your information show up here and so part of the attack is that it makes you it tries to convince you that you need to do an update, you know, your machine is out of date and it's one of those so you'd want to click on the download button because it's convincing you to do this and once you have executed that's it you already have been exploited. I can see it here it says, I can use this Macbook Let's say if I want to take a screenshot off your webcam so I have a special command here for essentially accessing your little camera right here If I say execute there we go. I just saw a green light pop up there for a second For a second, but now it's already too late now I already know what's going on around you Oh wow This particular attack is recording as a picture but you can actually record video You can also record sound if you wanted to That's really disturbing You can execute things on the behalf so what I'm going to try to do is actually open the calculator application.

Okay. Here we go. There's my calculator it just popped up.

I can basically execute any types of commands I want on your behalf. So what can people do to protect themselves? You should sort of be on the lookout for any time you sort of do an action and then the computer asks you to do something on your behalf.

You downloaded something and it says, "hey please enter your password" If you didn't expect that to happen maybe you should kind of stand back a little bit and say well does it normally happen when I log into a wifi access point? Or if you're logging into a network and you didn't expect to be redirected to an update page you should kind of stand back a little bit and say actually I'm not going to download this until I go home and I can trust my wifi. Well thank you so much great to see this.

Glad to have the opportunity to hack your machine.