Securing Email Accounts

[pollensa]

We've been hearing various stories recently of more internet scams but this time involving hacked email accounts especially web based ones such as gmail, hotmail, yahoo etc. and there are various ways you can make these more secure:

1. Change your password regularly and make sure it is strong - see Change Passwords | Create Strong Passwords | Microsoft Security

2. If it is available, check for any activity on your account from different computers (identified by IP addresses) & set alerts. In Gmail, just go down to the bottom of your inbox page & click on 'Details' bottom right.

3. And most importantly, make use of TWO STEP VERIFICATION. This normally involves some sort of confirmation via SMS if you (or a hacker) logs on from a different computer.

For Gmail - see Google 2-Step Verification
For Hotmail - see Two-step verification: FAQ - Windows Help
For Yahoo - see https://help.yahoo.com/kb/yahoo-account/SLN6282.html?impressions=true

 

[pollensa]

Unfortunately we are starting to hear more reports of Email accounts being hacked - mainly gmail accounts - and possibly as a result of opening an attachment.

First of all, never open an attachment from anyone you do not know or were not expecting. Even if you find you cannot open it or nothing happens, this does not mean that your computer has not been infected with a virus or malware. Not all viruses are picked up by security software, particularly when disguised as attachments.

Do secure your Email Accounts - in particular Gmail, Yahoo & Hotmail/Live.com - with

• Strong passwords changed regularly
• 2-Step Verification
• Checks & Alerts for unusual activity

If you don't know how to do any of this, ask someone with more computer knowledge for help.

Be very wary. There a lot of fraudsters out there!

 

[manda]

Hi Pollensa,

Great advice but as an IT consultant, working with some very large corporates, it always amazes me that people don't follow some basic rules.

If you are using a PC with Windows switch on the updates and check that these are being applied.

Choose a good Anti-Virus program and make sure it runs, even Windows Defender which comes free with most new PC's will do the job. Ensure that you arrange for a full-scan on your PC regularly.

Ensure that you have Windows backup running so you restore back to a point that you system would have been none affected

Never, ever, ever use the same passwords for your email as any other of your accounts

And last of all, as Pollensa says never open an attachment from an unknown source. If in doubt reply to the email asking what is the content about, most hackers will not respond as they rely on you opening it in the 1st instance.

hope this all helps

 

[pollensa]

Yes, these basic rules are extremely important, however recently I've realised that web based email accounts such as gmail, hotmail/live, yahoo etc. are extremely vulnerable EVEN if you follow these rules and have strong passwords etc.

It appears to be easy for fraudsters to 'obtain' passwords for these sorts of email accounts and either lock the owner out and take them over or infiltrate them without the owner realising.

The best way to prevent this is to use 2-Step Verification to ensure that you are the only person accessing your email account. This normally involves some sort of confirmation via SMS if you (or a hacker) logs on from a different computer. It may be a pain to use but it is essential especially if you use your account for any sort of financial transactions.

For Gmail - see Google 2-Step Verification
For Hotmail - see Two-step verification: FAQ - Windows Help
For Yahoo - see https://help.yahoo.com/kb/yahoo-account/SLN6282.html?impressions=true