Five tips for better email security
Last Update: Thursday, January 26, 2017 : 12:31 (+4GMT)
While security is everyone’s responsibility, it’s not always easy to get right. Our “Security Best Practices” blog series will provide simple tips that enable users to improve their online security. These articles aren’t for pros, but for those trying to get their basics down.
Even the most sophisticated cyber attacks can begin with a relatively simple email compromise. Only last week, we learned that attackers had crafted fake email invitations to deliver information stealing malware to guests attending a Palo Alto security conference in Indonesia. The attackers cleverly used screenshots of genuine conference invitations sent by Palo Alto to deceive the unsuspecting attendees.
With this in mind, here are some of our simple tips to help make your email more secure, without the need to set up a private email server.
1. Check your email sources
Always check who the email came from. Attackers use many techniques to try and appear legitimate, such as using domain names which look almost identical to a genuine domain in order to trick you into visiting that site. This is known as typo-squatting – for example, www.go0gle[.]com might be used to direct users to malware. If it’s an address you’ve never seen before, try searching online for the email domain to see if it’s from a registered company.
2. Don’t click on links
Don’t directly click on links in an email. Instead, hover over the hyperlink and make sure the URL matches the page you actually want to visit. Attackers are becoming savvier, and they often hide fake URLs behind linked image buttons or text links, such as “click here”.
3. Don’t open unsolicited attachments
Files aren’t always what they appear to be. Malware or a virus could be masquerading itself as a seemingly benign text or image file. Now these types of emails aren’t always that easy to spot, and they won’t all be from a Nigerian prince claiming to hold the key to your long-lost second cousin, twice removed’s “peanut dust” fortune. Some might try and lure you by claiming to represent a legitimate company, such as a supplier, and will attach documents purporting to be invoices in the hope that you’ll take the bait.
When dealing with email attachments, be extra careful if asked to enable macros. Macros are bits of code embedded within documents. Though not always bad, they have historically been used to deliver malware. To help combat this, you should avoid enabling macros in email attachments, and ensure any built-in macro security features are always turned on.
4. Use separate accounts and enable two-factor authentication
We know it’s tempting to simply use one email account across all the online services you are active on, but in doing so you’re playing straight into the hands of an attacker. If someone manages to break into that account, then they can probably gain access to all other services using that address (especially if you use the same password). Consider having separate accounts for different activities: such as an account for work emails, one for personal use, and another one for sites which bombard you with marketing material.
To top it all off, make sure you enable two factor authentication to make it harder for anyone trying to compromise these accounts. For more tips on better password security, check out our previous blog in the series.
5. Limit how widely you share your email address
Always think twice about what information you’re posting online. An exposed email on Facebook or a particular forum might be all the invitation someone needs to target you with phishing emails. As well as this, when you sign up for a service or post your email to a public site, your address can be copied or shared to be used by spammers.
So if you have to share your email address publicly, try and avoid using emails which link to important services – such as Facebook or your online banking.
- Beauty Spring Cleaning with Benefit Cosmetics!... [2459-Views]
- EU261 Reform Misses the Mark on Delays and Competitiveness... [1753-Views]
- Bridal Season Is Officialy Open with Benefit Cosmetics!... [1458-Views]
- Malabar Gold & Diamonds continues its expansion in North America: Launches 8th... [1435-Views]
- UAE Participates in EBRD Board of Governors Meeting and Reaffirms Support for ... [1383-Views]
- Dubai Summer Surprises 2026 Unveils an Action-Packed Calendar of Shopping, Din... [1345-Views]
- Riyadh Air Opens Ticket Sales for Daily Service between Dubai, UAE and Riyadh,... [1150-Views]
- Sports Coordination Council discusses sports representation framework, governa... [1128-Views]
- Ministry of Finance Unveils UAE's First Sovereign Retail T- Sukuk Investment O... [1115-Views]
- Under the directives of Mohammed bin Rashid Dubai Humanitarian facilitates se... [1066-Views]
- ãÌãæÚÉ ÇáÎáíÌ áÇÓÊÑÌÇÚ ÇáÃãæÇá ÇÓÊÑÏÇÏ ÎÓÇÆÑ ÇáÊÏÇæá ÈÎÈÑÉ ... [1063-Views]
- UAEREP Kicks Off AI-Driven Research Project on Next-Generation Cloud Seeding M... [1059-Views]
- Umm Al Quwain Free Trade Zone (UAQ FTZ) Launches Company Migration Programme t... [1026-Views]
- Mohammed Bin Rashid Library Emphasises Role of Families in Building Children's... [968-Views]
- Under supervision of Smart and Autonomous Systems Council, Abu Dhabi Investmen... [968-Views]
- UAE Pavilion Highlights Defence Innovations as Eurosatory 2026 Nears Final Day... [891-Views]
- Arsenal Legend Robert Pirés Visits TCL Air Conditioner Smart Manufacturing Bas... [884-Views]
- The Launch of EDGE Europe: EDGE Heralds a New Model for European Defence... [865-Views]
- Best Car Battery Replacement in Dubai Quick & Affordable... [863-Views]
- North Gate British School Launches Green Sadaqah: Forest Beyond Borders... [862-Views]





