>>42638106Its actually very easy. Just a couple months ago a bunch of fake versions of popular app websites were put up on Google as the advertised websites. For exg a fake website for OBS or 7zip. These fakes were put up as the ad site that shows up at the top of Google's search results. You would then look up one of these apps, click that link to a website that looks like the real one, then try to DL the app. But instead of the app you just downloaded malware. This could include keyloggers/rootkits that will then report your log in info you either type in yourself or what you have saved in your browser. On top of this the servers for Lastpass, a popular password storage system that auto inputs login info for you, were hacked. So a lot of people's log in data was stolen from this. Lastly you can get the good old fashioned phishing email. You get an email from Youtube saying you need to log in for such and such reason only, opps, it wasn't Youtube you just tried to log into from that link. I get so many goddamn phishing emails sent to my spam folder now-a-days, its unreal. Have to always double check the url address of any site you go to and the source email addresses.