Email Security: 25 Tips

[Объединенное Детективное Бюро]

10 Ways to Recognize Email Fraud Fake emails come across any Internet user. The publication Switched has compiled a list of features that allow you to define a mail fake. 1. Requests for personal information If the letter contains a request to send a social security card number, bank account number or PIN code, and for residents of our country - a tax number, then this is fraud. 2. Typos or spelling mistakes Despite the fact that the authors of fraudulent letters have mastered the methods of deception, they are usually hard to spell. Errors and typos are often found in such letters. If the letter looks suspicious in terms of grammar, it is probably a fake. 3. Links in e-mail In the text of business e-mails very rarely place links to websites. Almost always, such links lead to fake or infected web resources. A letter with links can be safely sent to the basket. 4. “Market research” with a request to provide personal information Another characteristic example of a fake letter is an invitation to participate in a research program or a notification of victory in a competition. In all these cases, the user is required to provide various kinds of personal data. This is usually an attempt to fraudulently obtain information of interest to scammers. 5. Investment tips from random people or companies If the letter contains investment advice, for example, an offer to buy or sell some shares, this is probably a hoax. Fraudsters expect users to listen to their advice in order to warm their hands on rising or falling rates. 6. Attachment files in emails from strangers This trivial advice is worth repeating again: you do not need to open attachment files from strangers, even if the bank or insurance company is specified as the sender. In almost all cases, such emails are fakes that contain infected files. 7. Emails without words The empty emails that sometimes come to users are actually images, clicking on which the user gets to a bogus site or an infected web resource. Such letters are best simply ignored. 8. Outdated information Sometimes fraudsters rather convincingly disguise themselves as representatives of technical support of a company, but forget that the information in the letter could lose relevance. If you are offered to click on a link in connection with a well-known event that has already taken place, then you have a fake. 9. Prohibition phrases If the letter contains the phrases “confirm your account”, “you won the lottery” or “if you do not answer within an hour, your account will be closed”, in 100% of cases this is a scam. Such letters should be removed immediately. 10. Greetings of a general nature It cannot be said that all letters with general addresses are fake, but messages with the words “Dear Members” or “Hello, Friend” at the beginning should be treated with special attention. [url = http: //ruformator.ru/] https://ruformator.ru/ [/ url]

 

[Матушкин Андрей Николаевич]

Re: 10 Ways to Recognize Email Fraud Thank you!

 

[НСК-СБ]

Email Security : 25 tips

I. Account Management

1. It is recommended that you have at least three mailboxes: for work contacts, for personal correspondence, and publicly available.

2. Since any address over time becomes the subject of spammers, it is recommended to change your email address approximately every 6 months.

3. Close browser windows after completion of work, especially while in Internet cafes, libraries, etc.

4. Clear your browser’s cache, history, cookies, passwords.

5. Do not use regular mail to send confidential and proprietary information.

6. Do not forget that many issues can be resolved by telephone, which is much safer than using e-mail.

II. Work with correspondents

7. Keep the addresses of correspondents in the BCC, and not in the SS, otherwise there is a danger that if one of the computers of the correspondents from your list is compromised, all the others will also be subject to spam.

8. Do not use the "Reply All" button, as this may accidentally send information to the wrong address. Use the "Retry" option.

9. When forwarding other people's letters, it is necessary at least to remove the addresses of other correspondents from the text. Otherwise, in one letter many addresses will be concentrated, as a result, the threat of spam will increase.

10. Timely archive letters, especially of business content.

11. When using mobile access to the mailbox, always remember whether a copy of the letter remains on the server. Otherwise, after deleting it from the phone, the letter will be lost.

12. Do not forget that deleting a letter from the mail client’s folder does not mean its disappearance at all. Letters can be stored for years in archive folders on remote servers and, if necessary, can be restored by professionals. III. Confronting Cheating

13. Do not open letters with the subject type "win the lottery", "inheritance"

14. ("Nigerian" letters), etc. If you have already opened an "unfamiliar" letter, do not succumb to the tricks of phishers. There are many signs by which they can be recognized, for example, impersonal treatment such as "Dear user", etc.

15. Do not send financial and personal information by e-mail.

16. Do not unsubscribe from newsletters that you did not subscribe to: subscription confirmation requests are often used by spammers.

| IV. Fight against malware

17. Remember that viruses and trojans can come from trusted addresses, for example, if your friend’s computer is zombie.

18. Do not destroy spam, but blacklist these letters.

19. Do not turn off the spam filter.

20. Use antivirus tools with the option to scan email attachments enabled.

V. Fighting hackers

21. Do not share account information with others.

22. Use complex alphanumeric passwords.

23. Encrypt the most important messages.

24. Use encryption for mobile access to mail.

25. Use an electronic digital signature for business correspondence.
https://www.s-director.ru/docs/view/48.html

 

[Игорь Эдуардович]

Thanks Andrew for an interesting article. I read it with interest.

 

[Матушкин Андрей Николаевич]

Email Security: 25 Tips

I. Account Management

1. It is recommended that you have at least three mailboxes: for work contacts, for personal correspondence, and publicly available.

2. Since any address over time becomes the subject of spammers, it is recommended to change your email address approximately every 6 months.

3. Close browser windows after completion of work, especially while in Internet cafes, libraries, etc.

4. Clear your browser’s cache, history, cookies, passwords.

5. Do not use regular mail to send confidential and proprietary information.

6. Do not forget that many issues can be resolved by telephone, which is much safer than using e-mail.

II. Work with correspondents

7. Keep the addresses of correspondents in the BCC, and not in the SS, otherwise there is a danger that if one of the computers of the correspondents from your list is compromised, all the others will also be subject to spam.

8. Do not use the "Reply All" button, as this may accidentally send information to the wrong address. Use the "Retry" option.

9. When forwarding other people's letters, it is necessary at least to remove the addresses of other correspondents from the text. Otherwise, in one letter many addresses will be concentrated, as a result, the threat of spam will increase.

10. Timely archive letters, especially of business content.

11. When using mobile access to the mailbox, always remember whether a copy of the letter remains on the server. Otherwise, after deleting it from the phone, the letter will be lost.

12. Do not forget that deleting a letter from the mail client’s folder does not mean its disappearance at all. Letters can be stored for years in archive folders on remote servers and, if necessary, can be restored by professionals. III. Confronting Cheating

13. Do not open letters with the subject type "win the lottery", "inheritance"

14. ("Nigerian" letters), etc. If you have already opened an "unfamiliar" letter, do not succumb to the tricks of phishers. There are many signs by which they can be recognized, for example, impersonal treatment such as "Dear user", etc.

15. Do not send financial and personal information by e-mail.

16. Do not unsubscribe from newsletters that you did not subscribe to: subscription confirmation requests are often used by spammers.

| IV. Fight against malware

17. Remember that viruses and trojans can come from trusted addresses, for example, if your friend’s computer is zombie.

18. Do not destroy spam, but blacklist these letters.

19. Do not turn off the spam filter.

20. Use antivirus tools with the option to scan email attachments enabled.

V. Fighting hackers

21. Do not share account information with others.

22. Use complex alphanumeric passwords.

23. Encrypt the most important messages.

24. Use encryption for mobile access to mail.

25. Use an electronic digital signature for business correspondence.
https://www.s-director.ru/docs/view/48.html

Thanks for working on the forum. +10

 

[Орлан]

Really very informative. thank.
What do you think is more reliable mail? mail speak poorly protected.

 

[Игорь Коракс]

Thanks Andrew, a very relevant and useful article.

 

[Бедеров Игорь Сергеевич]

Really very informative. thank.
What do you think is more reliable mail? mail speak poorly protected.

Reliable mail - its own mail. Own server.

And there are various services:

You write a message and get a link to it. Send this link to the recipient. He follows it and reads the text. After reading the letter, it self-destructs, repeated clicking on the link is impossible. Using HTTPS with the default browser settings gives great guarantees that the page will not be cached by the browser (and intermediate proxies too). Privnote - Send notes that will self-destruct after being read

10MinuteMail / index.html "10 Minute Mail" allows you to instantly register e-mail, whose life expectancy is 10 minutes. You can extend the life of an address indefinitely, but not more than 10 minutes each time. A page refresh is not required because it is periodically updated by itself. It is also important that in the letter sent from the temporary mailbox, the sender's real IP address is not broadcast. [DLMURL] https://12.krg.mirsudrf.ru/modules.php?n [/ DLMURL] ... rt & id = 1226

A one-time mailbox is an email address for one-time use, for which registration is not required. It can help avoid spam. [DLMURL] http: //xn--80aaghbevmvb2s.xn--p1ai/? _Op [/ DLMURL] ... pwcmVtaXVt

Self-Destructing-Email.com: You can send a letter both through the Web interface and through client software, the list of client software is large (opera, outlook, etc.)

WillSelfDestruct: Generates a one-time page with your letter, as soon as the page is visited, it is immediately destroyed. It saves from caches basically, the benefit is limited time and anti-caching mechanisms are worth it. willselfdestruct.com - Diese Website steht zum Verkauf! - Informationen zum Thema willselfdestruct.

KickNotes: It differs in that you can set the number of reads of the letter. https://www.kicknotes.com/

BigString: A Quite Standard Feature Set BIGSTRING.COM (TM)

Kablooey Mail: standard feature set, plus an attempt to protect the letter from forwarding, copying and printing [DLMURL] https://www.kablooeymail.com/HomePage.aspx [/ DLMURL]

ZMail Basic: there are cool functions, such as Deliver at so much time, Destroy at so much time, and it’s also trying to show who, when and at what time opened and read. Pricing / purchase

StealthMessage: encrypts letters, and stores passwords with a degree of anonymity, well, the standard has a set of functions, plus "protection" from copy-print, etc. [DLMURL] http: //xn--80aaghbevmvb2s.xn--p1ai/? _Op [/ DLMURL] ... pwcmVtaXVt

SD Message: Hardly protecting 60 seconds to read the letter, sending via the web interface https://www.sdmessage.com/

DestructingMessage: dies by timer after opening, works via web [DLMURL] https://www.destructingmessage.com/ [/ DLMURL]

VaporStream: paid service, no different, but! Type guarantees anonymity: o)) Yeah, you paid them money, they anonymously: o)) [DLMURL] https://12.krg.mirsudrf.ru/modules.php?n [/ DLMURL] ... rt & id = 1226

JAVA-program "iSMS" - substitution of SMS sender number
[DLMURL] https://narod.ru/disk/6207745000/isms231.zip.html [/ DLMURL]

 

[Игорь Коракс]

Your mail is reliable only if a person is able to provide it with protection and security. And if a person is not an IT specialist, it is quite normal to use mail services, following the above security rules.
And if transfer of especially confidential information is required, it is possible to use these services.
Although, as for me, relying on them is also completely not worth it. Better good old encryption.
Or simply archive information and password-protect with a strong password. I think there are not many people who can break archives even with a 12-15 digit password. The selection method will take several years.

 

[Бедеров Игорь Сергеевич]

. Better good old encryption.

I did so. Previously engaged in the transfer through a network of trade secrets. Well, the privacy mode. : ugeek: