The official Gmail blog has published five security tips to improve the security of a Gmail account.
Email security should be one of the top priorities for a number of reasons but especially because other accounts are usually associated with an email account.
Just think of all the websites and services that require users to signup with an email address. If an attacker gets access to an email account it would theoretically be possible to request new passwords for those accounts leaving those accounts wide open to the attacker as well.
Other unwanted activities include sending out spam and phishing emails to the account owner’s contact list or strangers.
Most email users should already be familiar with the tips offered by Sarah Price over on the Gmail blog. Here are the five tips posted at the website:
- Remember to sign out – Especially important if you are using a third-party computer or sharing your own computer with others.
- Be careful about sending certain sensitive information via email
- Enable “Always use HTTPS.” – This is no longer necessary as HTTPS is enabled by default on Gmail and there is no way of turning it off anymore.
- Be wary of unexpected attachments – Email attachments can contain viruses and phishing documents. If you don’t know the sender, better not open the attachment.
- Make sure your account recovery information is up-to-date – Very important when you need to regain access to your account after someone managed to take it from you.
Two of the five tips (being suspicious of attachments and careful about sending out information) are valid for all email accounts no matter where they are hosted and whether they are accessed from a website or desktop email software.
These programs on the other hand make tips one and three unnecessary. The email recovery tip on the other hand makes sense for all Gmail users. Gmail offers an option to add another email address to the account which can be used to retrieve Gmail login information or retake an account after it has been hacked by an attacker.
Do you think those tips are sufficient to protect email accounts or would you add other tips to the list?