Email security has been a hot topic as of late, with last week’s news of a supposed breach of 272 million email usernames and passwords and recent statements made by a hacker who claims to have accessed Hillary Clinton’s private email server two years before the private server’s existence was first reported by the New York Times. In the latter story, the hacker known as “Guccifer” claims he correctly guessed Clinton confidant Sidney Blumenthal’s AOL password and used the hacked email account as a stepping stone to Clinton’s private email server.
These stories highlight the fact that weak passwords continue to be the entry point of choice among hackers and cybercriminals. A weak email password can easily be guessed or even cracked by password-cracking tools that are freely available online, providing hackers access to all the victim’s emails, which can in turn compromise other accounts and sensitive information.
To help shore up what could be the biggest threat to your online security, here are ten best practices for your online passwords:
As in the “whaling” or BEC attacks RPost has discussed in the last few weeks, a single compromised email account can provide a cybercriminal with the valuable social cues and background information they need to perpetuate a successful and highly profitable cyberattack. Yet, besides monetary incentives, it is also believed that many hackers hack online accounts for bragging rights or out of a need to feed their egos. In last week’s case involving the 272 million email accounts, the hacker allegedly offered to sell account credentials for just 50 roubles, or less than $1, and eventually agreed to trade the information in exchange for favorable comments posted on an online hacker forum.
Know More: How To Secure Email
A strong password strategy is essential to maintaining email privacy, but it’s also just the beginning. To maintain email privacy when sending sensitive or personal information, you need to use an email encryption service. RMail contains an easy-to-use email encryption feature that provides true direct delivery of encrypted emails and does not require recipients to install any software or register for any accounts.
November 20, 2024
November 12, 2024
November 06, 2024
November 01, 2024
October 29, 2024