The Truth
The truth is, these scams works by fooling you into giving out your own password blindly, one of the requirement set out by these hackers is the sending of your own user name and password to an account that the scammer owns. Usually it has a very suspicious name to it, for example recoverpassword@hotmail.com (example) or adminpasswordrecovery@yahoo.com (example). How does it work?
These hackers claimed that there is a bug in the Hotmail, Gmail or Yahoo mail system and by emailing your user name, your password and your spouse’s /friend’s /enemy’s email address to the designated email address, a reply together with the requested password would arrive in your inbox within a day or two. Truth is, you’ve been conned into giving out your password, thus allowing the hacker unrestricted access into your email account.
The bottom line is, never reveal your password to a stranger, not even Microsoft’s hotmail team members, and your password can be retrieved with the ‘lost password’ feature in hotmail or any other email system.
Is there another way, say some soft of Brute Force hacking software?
You’ve been warned again, there are no such things as Brute Force hacking for emails. Brute Force hacking doesn’t work in any internet application, it’s like flooding the server with million of request per minute, common sense would tell you that if a server spot a DOS attack, it would block the IP address immediately, as a general rule of thumb, NEVER do anything a “hacker” tells you to do.
But, there ought to be some bug in their system right?
Adriaan Graas is a 16 years-old student from Netherlands who is interested in internet security and web development. Adriaan Graas informed Microsoft about an XSS (cross site scripting) exploit he found in Hotmail. Read More - Hacking Hotmail
and
Ask Dave Taylor found a relatively simple bug in gmail, it’s a sneaky hack that involves just as much social engineering as computer trickery. The key is that you got an invitation from someone you didn’t know. Read More - Hacking Gmail.
Breaking into an email account with known exploit is possible, but the only problem is, the engineers would have patched up the hole within hours when a bug is found. On top of that, exploiting a bug in an email system requires an in depth knowledge in computing, what are your chances of finding one and go about hacking it?