Email Security

From ITS Wiki - Information Technology Services - University of Rhode Island

Jump to: navigation, search

Template:Email Here are a few safety tips for improving your email security. NOTE: URI will never ask for your username or password over email

Use Multiple Email Accounts

Users should keep a minimum of three email accounts.

a.) Your work account should be used exclusively for work-related conversations.
b.) Your personal account should be used for personal conversations and contacts.
c.) Your third account should be used as a general catch-all for all hazardous behavior.

Users should always sign up for newsletters, contests, blogs, etc. only through their third email account.

Delete Browser Cache, History, and Passwords

After using a public terminal, users should delete the browser cache, history, and passwords. Many browsers are set to keep track of passwords and personal information that users enter.

Deleting Browser Cookies, Cache, & History Files

Use the Blind Carbon Copy (BCC) Option

Adding a person's email addresses to the "BCC:" field rather than the "CC:" field ensures that none of the recipients can see the email addresses of the other recipients. Using the BCC option also helps keep email addresses secure from spammers.

Avoid Phishing Scams

Phishing is defined as, "... the act of tricking someone into giving them confidential information or tricking them into doing something that they normally wouldn’t do or shouldn’t do." For example, many hackers send emails claiming to be from legitimate companies, such as national banks, asking users to "verify" account details. If you provide the hacker with personal information, that information will be used to steal your identity and your money.

Avoid Sending Personal and Financial Information via Email

Almost all companies, banks, and retail stores provide a secure area on their website to receive information from you. It is best to use these forms or call with sensitive information, such as credit-card numbers.

Use Complex and Hard-to-Guess Passwords

Do not use dictionary words or words that have personal relevance. Sometimes hackers are people you know. Use passwords like $oCCer!-2007.

Erased Email is Not Gone Forever

Deleting an email message from one's inbox and from their 'Sent' inbox does not necessarily mean that the email is lost forever; messages that are deleted often still exist in backup folders on remote servers for years. Keep this in mind when writing email.