Thoughts on Email Security

Let’s face it, many people use email for business.  Many people use email so they can convey a message, do business, fall for a scam… Yep, I said it.  Email is the number ONE threat vector when it comes to Cybersecurity.  Getting your email address, a working email address that you check, open a message and interact with is one of the best ways that a hacker can execute on their strategy.


What can you do, what should you do?


1. Don’t give out your email to everyone, loosely and if you see someone is handling your email unsafely (THAT YOU KNOW), ask them to stop in person.  While it seems harmless that a legitimate contact can be doing a noble thing by emailing you, their improperly executed actions can be devastating later on.  I subscribed to a marketing list by joining an organization, somehow;  Strangely enough that my consent was never ever obtained along the way for open broadcast of my email but it goes to show that joining legitimate organizations doesn’t mean your email will be treated as securely as you would treat it.


2. If you don’t recognize it, don’t pet it.  That’s an attractive subject line?  Let the clicker beware, best not to click it.


3. If you get an email from SOMEONE YOU KNOW and the subject is unexpected, off the wall, out of context, hopefully in your SPAM Box, Junk Mail or other filtered folder, chances are it wasn’t from this person you know.  Before you click and just to be sure, pick up the phone and call them.


4. Your Bank, Creditor, the IRS, your Doctor, your Pharmacist, etc will legitimately NEVER EVER EVER EVER EVER EVER ask you in an email to confirm who you are; it is NOT them.  I don’t care if you have committed Tax Fraud according to that email.  If you have legitimately committed Tax Fraud, you can’t fix it through email.


I hope you enjoyed this message.