Email Security: Is your Inbox well Protected?

11 October 2019 by National Bank
Email security

Did you know that your inbox is a gold mine for fraudsters? If it isn’t protected, it could allow them to access your accounts on various transactional websites, among other things. But don’t worry—protecting yourself can be rather simple. Here are a few tips for increasing your inbox’s security.

Take precautions against identity theft

Get with
Securizone 360TM

Why protect your inbox?

You probably use an email address to access your accounts. When you try to retrieve a forgotten password, usually the platform will send you an email. However, if fraudsters have access to your inbox, they will be able to change the passwords to your accounts and steal your identity, for example.

“If someone accesses the inbox of a third party, they could potentially have access to their entire life: their name, their address, their SIN, their tax returns, etc.,” says Tony Fachaux, a cybersecurity awareness expert at the National Bank.

Criminals could also collect your personal information and sell it on the dark web, the hidden part of the Internet where black market dealings take place. Whoever buys this information could then also defraud you, which would turn into identity theft.

“Fraudsters can also manipulate the people around you: They’ll imitate your writing style and reach out to your contacts to extort their money or personal information, for instance,” adds Tony Fachaux. “They’ll do it while you’re away on vacation and don’t have access to your emails.”

How to protect yourself

Don’t worry—there are many ways to make your inbox safer and protect yourself against fraudsters. Here are four easy tips:

1.      Use two-factor authentication

You can enable two-factor authentication to access your inbox. This method—also known as 2FA—is both simple and effective for strengthening the security of your accounts.

With two-factor authentication, you will be asked to enter a unique verification code after you’ve entered your username and password. This code can be sent via email, voicemail, text or a third-party app. For your security, never share the verification code with anyone.

You can specify in your browser or email settings how often two-factor authentication is required. By default, you will be prompted for the validation code every time you log in, if you change your password, or if you log in from a new device or browser.

With two distinct factors for authentication, you benefit from stronger protection. Your inbox and all the personal information therein will be much safer.

In fact, the National Bank is the first financial institution in Canada to provide two-factor authentication on its online banking platform. “We’re very innovative in this area,” adds Mr. Fachaux. Two-factor authentication is now available on many online platforms.

2.      Make sure the second factor is reliable

When using two-factor authentication via email, it is crucial that you have different passwords for the platform you’re protecting and the email you’re employing as the second factor. Otherwise, if a fraudster gets their hands on the password for your first account, they will gain access to your second account too.

Using email, voicemail or text messaging as a second factor is a reliable way to improve your account security. However, the most reliable second factors are currently provided by smartphone and tablet apps that create unique, randomly generated passwords. These consist of a series of numbers that only stay valid for a short period of time.

3.      Manage your passwords carefully

Keep in mind that no one should be able to guess your password. It should be as long as possible (aim for 21 characters) and it should not contain any personal information that’s easy to find, like your children’s names or your birthdate.

Also, be sure to choose different passwords for each platform you use. We do not recommend using the same password for Facebook and LinkedIn, for example.

Be creative when making a password. You could choose four random words that only make sense to you, or use a sentence without spaces, capital letters, or punctuation. If your password is long enough then special characters aren’t necessary, but you can still use them.

You can use a cross-platform password manager to create passwords that are complex and distinct enough. Some smartphones also have their own native password manager. The way they work is simple: You only have to remember one strong password, and the manager automatically enters the passwords to your accounts. Pretty handy!

4.      Develop the right reflexes

Finally, if you see some emails in your outbox that you didn’t send, your account’s security may have been compromised.

Put the advice listed above into practice and quickly check your bank accounts, looking for suspicious transactions. In any case, these are good practices that should become instinctual. Remember that your inbox is a true gold mine that you need to keep safe.

Several measures exist to protect you from fraud.

Legal disclaimer

Any reproduction, in whole or in part, is strictly prohibited without the prior written consent of National Bank of Canada.

The articles and information on this website are protected by the copyright laws in effect in Canada or other countries, as applicable. The copyrights on the articles and information belong to the National Bank of Canada or other persons. Any reproduction, redistribution, electronic communication, including indirectly via a hyperlink, in whole or in part, of these articles and information and any other use thereof that is not explicitly authorized is prohibited without the prior written consent of the copyright owner.

The contents of this website must not be interpreted, considered or used as if it were financial, legal, fiscal, or other advice. National Bank and its partners in contents will not be liable for any damages that you may incur from such use.

This article is provided by National Bank, its subsidiaries and group entities for information purposes only, and creates no legal or contractual obligation for National Bank, its subsidiaries and group entities. The details of this service offering and the conditions herein are subject to change.

The hyperlinks in this article may redirect to external websites not administered by National Bank. The Bank cannot be held liable for the content of external websites or any damages caused by their use.

Views expressed in this article are those of the person being interviewed. They do not necessarily reflect the opinions of National Bank or its subsidiaries. For financial or business advice, please consult your National Bank advisor, financial planner or an industry professional (e.g., accountant, tax specialist or lawyer).



Take precautions against identity theft

Get with
Securizone 360TM