We Live Security shared answered several great information security questions in their recent post. Here are a few highlights to keep in mind.
- Why would someone want to hack my email?
- Carry out credential stuffing. They’re betting that you will use the same log-ins on other accounts, and so use automated software to try and open them too
- Reset your other accounts. Most websites email a reset link to click on, which an account hijacker will be able to access and use to change passwords on your other accounts
- Send spam/phishing/malicious emails to all of your contacts
- How might hackers get your account details?
- Guess or brute force your email password using automated software
- Steal your email and log-in combination from a company you’ve registered with in the past. Although the password may be encrypted, the algorithm can sometimes be cracked
- Steal your password if you’ve been logging in on public Wi-Fi or a shared computer
- Steal your details via malware downloaded to your machine (usually via a phishing email)
- How can I check if my account was hijacked?
- Emails in your sent and inbox that you don’t recognize
- The password has been changed, locking you out
- Friends complaining of spam coming from your email address
- Receiving multiple password change requests from other websites and apps
- Your email provider notifies of multiple logins from unfamiliar IPs and locations
Don’t fall for a scammers tricks. Remember these tips:
- Change your account password regularly
- Always use unique passwords (don’t share a password with multiple companies)
- Don’t respond to unsolicited job advertisements (phishing)
- Keep your machine updated