Email Security: Simple Steps

TL;DR

Protect your email from hackers and scammers with strong passwords, two-factor authentication, careful link checking, and awareness of phishing attempts. Regularly review security settings and use a reputable email provider.

1. Strong Passwords & Unique Logins

1. Create strong passwords: Use at least 12 characters with a mix of uppercase letters, lowercase letters, numbers, and symbols.
2. Don’t reuse passwords: Each account should have a unique password. A password manager can help you remember them.
3. Regularly update passwords: Change your email password every 3-6 months.

2. Enable Two-Factor Authentication (2FA)

2FA adds an extra layer of security, requiring a code from your phone or another device in addition to your password.

1. Check if your provider offers 2FA: Most major providers like Gmail, Outlook and Yahoo do.
2. Enable it in your account settings: Look for options labelled ‘Two-Step Verification’ or similar.
3. Use an authenticator app: Google Authenticator, Authy, or Microsoft Authenticator are good choices. Avoid SMS-based 2FA if possible (it’s less secure).

3. Spotting Phishing Emails

Phishing emails try to trick you into giving away personal information.

1. Check the sender’s address: Is it legitimate? Look for misspellings or unusual domains.
2. Be wary of urgent requests: Scammers often create a sense of panic.
3. Don’t click suspicious links: Hover over links to see where they lead before clicking. If in doubt, don’t click!
4. Look for poor grammar and spelling: Professional emails are usually well-written.
5. Never provide personal information via email: Banks and other legitimate organisations will never ask for sensitive details by email.

4. Email Security Settings Review

Regularly check your email provider’s security settings.

1. Check connected apps: Remove any apps you don’t recognise or no longer use.
2. Review filters and forwarding rules: Ensure they are set up correctly and haven’t been tampered with.
3. Enable encryption (if available): Some providers offer end-to-end encryption for added privacy.

5. Reporting Suspicious Emails

Help protect yourself and others by reporting phishing attempts.

1. Report to your email provider: Most providers have a ‘Report Phishing’ option.
2. Report to the National Cyber Security Centre (NCSC): https://www.ncsc.gov.uk/report

6. Use a Reputable Email Provider

Choose an email provider with strong security measures.

• Gmail, Outlook, and ProtonMail are generally considered secure options.
• Research the provider’s security features before signing up.

7. Be Careful with Attachments

1. Don’t open attachments from unknown senders: They could contain malware.
2. Scan attachments with antivirus software: Before opening, run a scan to check for viruses.