Category: Internet Security

9 Proven Ways To Enhance Your Email Privacy!

9 Proven Ways To Enhance Your Email Privacy

Even though WhatsApp, Facebook Messenger, Instagram, and Snapchat among others are the go-to social media platforms for instant communications, we still heavily rely on emails even in 2020. So why does there seem to be little focus on ways to protect our email privacy?

Afterall, we use emails to share our financial information with our accountants, manage online money transfer services like PayPal, and even use it to create all of our social media accounts. In a sense, our personal lives are linked to our email addresses.

Despite being such a major part of our life and the fact that approximately 320 billion people are using it, email remains as one of the least secure means of communication. Believe it or not, email technology is still based on protocols that can’t cope up with modern online security threats.

Getting your email hacked might not seem like a big deal for kids, but for adults, it can be an absolute nightmare.

Keeping this in mind, in today’s informative blog post, I’m going to talk about why email privacy is so important, share with you some real-world email hacking case studies, and also tell you 9 proven tips to enhance your email privacy.

Why Email Privacy Matters?

Think about it for a second, everything you do online is connected to your email address. Whether it be online banking or something as simple as signing up for any online service, you’ll have to provide an email address to get started. Once you get registered, you usually get your account details such as username and password emailed back to you.

If a hacker gains access to your emails, all hell can break loose. About 92% of malware is delivered through emails. That’s an alarming figure.

If a hacker gains access to your account, they can obtain sensitive information such as account credentials, personal information, and even steal your identity.

Now you must be thinking, how on earth can someone read my emails when no one knows my password?

Well, unlike the messages we send over WhatApp and other end-to-end encrypted messaging services, emails go through numerous servers before reaching their destination.

Whenever an email passes through an intermediary server, multiple copies of it are stored. While one server might be difficult to hack, others might not be. That’s how your emails get compromised.

Think I’m making this up?

Well, you can enter your email address on haveibeenpwned.com and check whether anyone has compromised your privacy.

Anyways, if you still have doubts, let’s check out some real-world use cases where people have actually lost a ton of money simply because their email addresses got hacked.

Real-World Email Hacking Cases

I’m going to share with you two actual cases that resulted in the loss of thousands of dollars simply because some hackers managed to gain access to the email accounts of unsuspected victims.

Case #1 – $47,500 Stolen From a Pensioner

A pensioner in Brisbane Australia bore a loss of $47,500 when he became a victim of an identity theft case. A hacker managed to hack into the victim’s account and send a series of convincing emails to the advisor managing his pension funds.

The hacker requested to deposit $90,000 to an overseas bank account as his daughter desperately needed money. The advisor got convinced and sent over a Pension Payment Request form telling the hacker that only $47,500 can be withdrawn.

The hacker filled in the form with all the details stolen from the client’s email account and told the adviser not to call him as he’s attending a funeral.

The advisor respected the client’s request thinking it was genuine and processed the withdrawal request right away. Till the real client could manage to explain that his email account got hacked a few days ago, the funds were already transferred to an offshore account.

Case #2 – Barely Dodged an Email Fraud of $260,000

Another financial adviser based in Australia was also targeted by a hacker, however, she managed to dodge a fraud of $260,000.

A hacker emailed her from her client’s email address that got hacked, requesting her to change the email address to a new one. The new email address only had one letter missing — “g”.

The hacker then sent an email from the new email account telling the advisor to deposit $260,000 in an offshore account because they wanted to buy some property. The email seemed totally legit, however, since the amount was quite substantial, the advisor wanted to talk to the client personally for authenticity reasons.

However, the real client was unreachable over the phone, and the transaction got delayed. In desperation, the hacker contacted the adviser via a phony contact number that was associated with the new bogus email address.

However, upon getting in contact, the adviser quickly figured out that the person on the phone was not the real customer judging from the accent, and refused to process the request.

9 Tips to Enhance Your Email Privacy

So by now, you must have an idea of how a hacker can take over your life if your email address gets compromised. But it’s not the end of the world. Now, we’re going to look at 9 proven easy tips to enhance the privacy of your email accounts.

Tip #1 – Use More Than One Email Address

You should never rely on just a single email account for work and personal use. Always use two different email accounts to segregate your work mailbox from your personal mailbox. This will ensure that you’re not putting all your eggs in the same basket.

If you want to take this strategy to another level, you can create different disposable email addresses when signing up for any service online. This way, you’ll never risk your personal information.

Tip #2 – Use Strong Passwords

Probably the most basic reason why most people lose their email accounts is that they use weak passwords. Passwords like your name followed by a sequence of numbers (John12345678) are really easy to crack.

With your password compromised, a hacker can freely go through your emails, piece your personal information together, and then wreak all sorts of havoc.

An easy solution to this problem is to use strong lengthy cryptic passwords. Use a lot of uppercase and lowercase letters along with numbers and special symbols to make your password uncrackable. A password like this: !.v[L2,m=nVhpPJ<:Ub<gQ5A, would be impossible to compromise.

Tip #3 – Don’t Share Your Email When You Don’t Have to

This seems pretty self-explanatory, however, you’re often going to find people linking their email addresses in their social media bios. We’re all guilty of it. Another mistake that we all make is that we tend to provide our real email address when signing up for services that don’t really require email confirmations.

By limiting where we share our email address, we can prevent hackers who are constantly on the lookout for new victims from compromising our email account’s privacy.

 Tip #4 – Enable Two-Factor authentication

In addition to using an insanely strong password, it’s often a good idea to use two-factor authentication (2FA). Two-factor authentication ensures that if your password gets compromised, an attacker will still be required to bypass the second layer of security.

Depending on which version of two-factor authentication your email client offers, an attacker will be required to either enter an email address on a secondary device, enter a pin received via SMS or answer a secret question for reinforced privacy.

Tip #5 – Never Email Personally-Identifying Information

Since emails are relatively easier to hack and compromise, you should never share any personally identifiable information such as social security numbers, phone numbers, date of birth, and other sensitive data. This will ensure that you’re not providing any information that can come back to haunt you in the future.  Another available resource where you can check if your data is exposed is from CyberNews and their data leak checker.   It covers the latest leaks from LinkedIn or Clubhouse, just to name two. 

Tip #6 – Use a Secure and Authentic Email Client

If you want to be completely sure that no will be able to read the contents of your emails, you’ll have to ditch mainstream email clients like Gmail for something that’s not generic and actually offers any privacy.

You can go for something like ProtonMail, who have their servers buried 1,000 meters underground in a Swiss bunker. Other noteworthy email clients include Posteo, Mailfence, and mailbox.org.

Tip #7 – Sign Out of Your Mailbox as Often as You Can

This might seem like a cumbersome process, but it can actually enhance the privacy of your email account. Signing out whenever you’re not using your email account can prevent remote hijackers from examining the contents of your mailbox.

Now, I’m not suggesting that you log out of your account every time you’re done emailing someone. Instead, sign out of your email account at the end of your work shift or before going to bed. Especially if you’re using someone else’s computer.

Tip #8 – Don’t Use Public Wi-Fi

No matter how tempting a free Wi-Fi connection might seem, you should never use one for any sensitive task. Hackers are infamous for setting up malicious hotspots to intercept people’s personal information.

So, if you log into your email account via a malicious Wi-Fi connection, a hacker can potentially take over your email account and steal your sensitive information. This is why you should always use only trusted networks or use a Proxy if connecting to public Wi-Fi is the last option available to you.

Tip #9 – Use a Recovery Email Address

The last and final tip I have for you is to always set up a recovery email address in case something goes wrong. This way, if someone manages to take over your account and exploits you, then you can simply change your password via the recovery backup email address and regain control of your email account.

Wrapping up!

So this wraps it up. I hope you now have an idea of why you should start taking the privacy of your email accounts seriously. If you religiously start following the 9 tips I shared with you in this blog post, you can greatly enhance the privacy of your email account.

After all, it all comes down to you. You’re the only one who can put in the effort to and safeguard the privacy of your email account. If you found this blog post informative, do consider sharing it with your friends and family.

Read more about how to protect your email privacy by preventing identity theft through phishing emails.  You can also make the internet more safe by reporting phishing.

Share This Article

How to Develop Good Password Management Habits

Teaching kids about passwords

Selecting an easy to remember password seems like a simple enough thing to do. But when it comes to protecting your online accounts, there are a few important things to consider before you lock in that special password that is all your own and unique to you.

Is your password secure enough? Are you using the same password across multiple accounts? What if someone hacks into a database and learns your password and email address?

Whether it be on social media, cloud backup or a password to your bank account, keeping track of passwords is a hassle. Still, passwords remain to be out first defense against an invasion of privacy that can affect our safety both on and offline. Until fingerprint technology or facial recognition becomes the norm, we all need to learn and develop good password management habits.

Learning Password Management at School

Password management can be an excellent point of discussion that is catered to students of any age that are already choosing their own passwords for their various social media accounts. Here are a few guidelines and tips that can also be used for parents at home, who in many cases are already helping their kids choose passwords for transparency at home and for online protection.

1. The importance of forming a strong password comes before anything else

Make sure your password contains capital letters, numbers, as well as special symbols. Also, do your best to make sure passwords are at least a certain length. These types of passwords may be difficult to remember immediately, so write them down and keep it on a piece of paper at home. Many online accounts save the password on your computer or smart phone app and it may be a while before you have to enter it in again.

If you fail to memorize your password and you didn’t write it down, you can create a new by clicking “forget password”, which will send a password resent link to your email.

2. The dangers of entering one’s password on a public computer

The problem with public computers is that you never know what might be lurking in the shadows. Unless you happen to be the administrator, which you probably aren’t. There might be all sorts of malware hidden in there, including the one that can spy on keystrokes.

Even assuming the computer is clean, there’s always a danger. After all, humans are on the forgetful side of the scale. In other words, your can easily forget to log out of your account and grant full control to the next random person who comes by. Not an ideal situation. Plus, you never know who’s standing behind your back when you enter your password in public.

When using your own phone or computer in a public place, be wary of logging into an account when connected to a public Wi-Fi that does not require users to identity themselves.

3. The problem of trading security for convenience and the reasons why it’s discouraged

Too many people fall into the convenience trap. They start reusing the same password across different websites for the sake of keeping things easy to remember. An additional way to increase security is to learn more about the importance of using a password manager. Thanks to its functionality, users keep the convenience of not having to remember too much. They enable creating different passwords for each account while only having to memorize the master password to access the rest.

Longer is Stronger!

According to CISA, America’s Cybersecurity and Infrastructure Security Agency, passwords should be longer than 16 characters

Enhance your password security by doing the following:

  • Make your passwords long, unique, and complex.
  • Don’t use the same password on multiple platforms.
  • Use a Password Manager to store all your passwords. This will mean you to only remember one password to access all of your other passwords.

Read about a world with no passwords:  The Future of Biometric Security

Learning Password Management at Home

Often, kids can be more tech-savvy than their parents. But even as a parent you can take the initiative to protect your family with security basics, and beyond, that are often overlooked by those who feel they are already up-to-date on the latest in online safety.

Let’s also not forget that technology is always evolving. Hackers are continually coming up with new ways to gain unlawful access to private databases and accounts. What was good practice for protecting privacy two years ago may not be the best way to go about it today.

1. Remote data wiping technology

Even if you do everything right cybersecurity-wise, what’s stopping you from misplacing or losing your device? Many people tend to be forgetful. So, if you’re not sure where your phone is (especially if you suspect someone has snatched it right out of your pocket), deleting your data before it gets into the wrong hands is a wise course of action. Remote data wiping technology is an insurance policy in this regard.

If you have important information you want to save, you’ll want to set up some sort of online back-up to a cloud account. This way you can easily restore your device if you wipe it clean. Of course, make sure your online back-up account also has a strong password.

2. Two-factor authentication

Malware programs can steal your passwords right from under your nose. With two-factor authentication you can greatly increase protection of your accounts. Two-factor authentication asks anyone logging in to perform an extra step (like entering a PIN from a confirmation SMS) before granting access an account. It can restrict access in case of a data breach or stolen password.

3. Password variations that use the same core are a terrible idea

Never underestimate the creative mind of a hacker. If they can get close to guessing your second password based on another, it won’t take long before they succeed. Randomly generated passwords are a much better idea than different variations of the same password.

4. Personally identifiable information is a no-no

Let’s put it this way. The street where you live, as well as your birthday, are all facts that can be available to anyone. Anyone willing to go to great lengths to get them, that is. Therefore, you should avoid constructing passwords around publicly identifiable information.

5. The importance of changing your passwords often

Changing your passwords regularly is a good cybersecurity practice. But it also tends to be forgotten, especially when many accounts do not require changing your password regularly. Again, with a password manager, having to remember a whole new batch of passwords becomes a non-issue.

No matter your age or expertise, the creation of a good strong password is often taken for granted. Whether it’s a social media account, a website for online shopping, your online banking access – or an app on your phone, each one of your accounts is an online profile of you that’s worth protecting in as many ways that are available.

If you think a password you have used online has been compromised, it may be due to clicking a link in a phishing email.  Learn what you can do to protect yourself as well as how to report phishing when it happens to you.

Share This Article

What to do when your Social Media Account is Hacked

social media hacked

Cases of social media accounts being hacked has been on the rise in the recent past. You will know that your social media account has been hacked if you find activities that you didn’t initiate in your account. These could be posts, private messages, following or unfollowing people and sent friend requests.

You could also get notifications of changes to your profile or password. Depending on how much private information you have shared on your accounts, you risk your identity being stolen, or the hackers getting access to your financial accounts. If you notice such malicious activities, here is what you should do.

1. Scan your device

One way hackers could have gotten their hands on your password in order to hack your social media is by injecting malware to your device. That is why the first thing you should do is to run a full virus scan on your computer. If you find any malware, make sure you remove it. Restart and rescan your computer to be sure that it is safe. This is the only way to ensure that hackers do not have access to your device any more.

2. Enhance the security of your account

After cleaning your computer, change the password to the compromised account. If you have used the username and password on other accounts, be sure to change there too. The new strong password should not be anywhere near the old one. Make it stronger by including lower case letters, capital letters, numbers and symbols. Enhance the security of the accounts by enabling the 2-Step Verification. This will ensure that you receive a unique code to your phone whenever there is a change to your accounts settings. This locks out suspicious people from your account since they can’t access the special code sent to your phone.

3. Connect through a VPN

Another way social media hackers get your information is by spying on your activity over the internet when you connect through a public Wi-Fi. You should close up this loophole by installing a VPN in your device. Ensure that you use it to connect to the internet whenever you are browsing.

So, what is VPN? This is a virtual private network that works as a safe tunnel between your device and the sites you visit. This means that your browsing history is kept private and third parties can’t spy on it, limiting chances of hackers getting your information.

4. Notify your family and friends

Your family and friends might notice the messages that they received weren’t from you. However, you shouldn’t assume this; ensure you inform them that your social media was hacked so they stay wary of clicking on suspicious emails. There are cases where hackers ask money from your contacts, warning them will ensure that they don’t send their hard-earned cash to criminals. Besides warning them, go ahead and pull down any posts that were sent by the hackers. Delete the suspicious messages and report them to the compromised social media site. If there are games or third-party apps downloaded to your account, ensure that you delete them too, including any other that you do not use.

5. Check the settings to your email account

Hackers could have changed your email settings in order to gain control of the email activities. Ensure that you check these settings and change them accordingly. Change your signature and turn off auto-responder if they have activated it. As a preventive measure, always make sure to lock your computer while you are away from your desk. In that way, having a password-protected laptop will ensure that even if you are away from your computer, other people will not be able to access your data.  

6. Update the apps on your devices

Whenever apps and software developers release an update, there are enhanced security features that usually come with the update. That is why you should ensure that the apps in your devices are updated to the latest versions. There could be a notification feature whenever someone tries to log into your account from an unfamiliar location that you could miss if your app is not updated. Take advantage of enhanced security fixes to ensure that you are notified of malicious attempts to your accounts. Be sure to set your devices to auto-update so that apps are updated automatically in case you forget to update them.

Social Media Hacked! Conclusion

Do not panic if your social media is hacked as this happens to a lot of people. However, to limit the amount of information that hackers can steal from you, avoid posting your private information in your social media accounts. Too much information about you gives the hackers an easy time guessing your security question. If you notice any suspicious link or message, do not click on them, instead report them to the site so that they can stop the spread. Finally, educate yourself and your family about the importance of cybersecurity. From adults to kids, if someone is able to manage a social media a account they are also able to protect it.

Share This Article

What is Internet Privacy and How to Protect Yourself

What Is Internet Privacy

We share our details whenever using the internet without knowing it: websites track our geolocation, credit card or phone numbers, search, and purchase histories. Imagine what would happen if frauds will get such data! We will tell you why you must disable third party cookies or install reliable antivirus.

Most of all social connections take place on the Internet. We chat with friends, publish photos, or look for new sneakers. So if it matters for you that your correspondence and private files don’t leak into the public domain, then you should think about privacy issues.

What’s so special about Internet privacy?

Privacy on the Internet reflects in which way the site or company gathers and stores our data, and how they transfer or sell it. Based on received data, they form a broad customer base, that includes details such as telephone number, home address, or even clothing preferences.

Why we should care about such things as privacy on the Internet? Data leakages may result in stealing money from our credit card, appearing of annoying ads that are based on our purchase history, and receiving tons of spam emails.

Here’s some advice on how you may protect your privacy. They’re really simple, so both children and adults will manage to use them.

You can secure your details by such means:

1. Disable tracking cookies

If you want to prevent websites from monitoring your activity, you need to block third party cookies. It will help you deal with annoying ads, formed by your search history, and prevent your confidential data leakages. Here’s a guide that explains how easily block cookies in any browser.

2. Use a VPN

Another way to protect your info is to download and turn on a VPN. The major benefit of this method is that your data remains encrypted. Even your ISP won’t be able to find out which pages you’ve visited. A VPN allows you to visit blocked sites and bypass filters on work or school computers. We suggest taking a look on top free VPNs.

3. Don’t share your private details with suspicious websites

 If you find yourself on a suspicious site that asks you to enter private data, credit card numbers, or other intimate details, be extremely careful! These websites preserve data, create huge databases, and sell them to advertising companies. Therefore, we recommend you think twice whether a coupon for a free burger or participation in suspicious sweepstakes is worth intimate information leakage.

4. Turn on the private browsing mode

If you turn on the private browsing mode, you prohibit websites to gather and preserve your actions and data. On the contrary, this method won’t give full protection. ISP, smart tracking, and websites will still see your private data. This guide explains how to turn on private browsing mode.

 5. Set up a verified antivirus

Antivirus is a great helpmate when we talk about data security. Top antiviruses suggest such services as web protection, antispam, online payment’s security, and parental control. Scammers can steal people’s intimate files to extort money in exchange for deleting stolen data. However, if you have installed antivirus, no one will get your sensitive files, correspondence, and photos. Here you can find a list of the top reliable antivirus programs.

If you are concerned about the security of your private details, you can avoid scammers, stealing money from credit cards, or annoying spam. With our tips, you will easily maintain confidentiality at the right level. Just remember to be extremely cautious during an Internet session, and your data will be safe.  

9 Proven Ways To Enhance Your Email Privacy!

Share This Article