Post by kas on Jan 12, 2011 11:45:28 GMT -5
I have seen a lot of emails hijacked over the last year and suspect this year won't be any different.
So I will start with Gmail... how do you keep it safe and what do you do if you suspect suspicious activity on your account?
www.google.com/support/forum/p/gmail/thread?tid=634dbba631f22f6e&hl=en
If you can’t access your account
Use the account recovery form:
www.google.com/support/accounts/bin/request.py?ara=1&hl=en&contact_type=ara&ctx=ara
More links:
Detecting suspicious account activity
gmailblog.blogspot.com/2010/03/detecting-suspicious-account-activity.html
Messages asking for personal information
mail.google.com/support/bin/answer.py?hl=en&answer=8253
More...
googleonlinesecurity.blogspot.com/
So I will start with Gmail... how do you keep it safe and what do you do if you suspect suspicious activity on your account?
www.google.com/support/forum/p/gmail/thread?tid=634dbba631f22f6e&hl=en
Steps you can take to keep your account secure
If you believe your account has been compromised (but you can still sign in), you should check and fix all of the following settings ASAP:
1. Check for viruses and malware first. If your password was stolen by malware, running a scan first before changing your password can help avoid your password being stolen again. Run a scan on your computer with a trusted anti-virus software. If the scan detects any suspicious programs or applications, get rid of them immediately.
2. Check the bottom of your inbox and make sure your account is not open at any other locations. If it shows additional locations, open the Details window and click ‘Sign out all other sessions.’
3. Review and change your password and account recovery options.
Settings >> Accounts and Import >> Google Account Settings
Pick a new password. Also select “change password recovery options” and verify your secret question, phone number and recovery email address.
4. Review your signature and vacation responder to make sure they are what you expect.
Settings >> General >> Signature
Settings >> General >> Vacation Responder
5. Review your ‘Send mail as’ settings to make sure they are using your correct email address.
Settings >> Accounts and Import >> Send Mail As
6. Check for filters that forward or delete messages.
Settings >> Filters
7. Check your ‘Forwarding and POP/IMAP’ settings for accuracy.
Settings >> Forwarding and POP/IMAP
Make sure you aren’t unexpectedly forwarding or downloading mail from anywhere; spammers frequently change these settings to ensure you continue sending spam even after changing your password.
*Big thanks to bck56 for compiling a comprehensive list of security tips!*
If you believe your account has been compromised (but you can still sign in), you should check and fix all of the following settings ASAP:
1. Check for viruses and malware first. If your password was stolen by malware, running a scan first before changing your password can help avoid your password being stolen again. Run a scan on your computer with a trusted anti-virus software. If the scan detects any suspicious programs or applications, get rid of them immediately.
2. Check the bottom of your inbox and make sure your account is not open at any other locations. If it shows additional locations, open the Details window and click ‘Sign out all other sessions.’
3. Review and change your password and account recovery options.
Settings >> Accounts and Import >> Google Account Settings
Pick a new password. Also select “change password recovery options” and verify your secret question, phone number and recovery email address.
4. Review your signature and vacation responder to make sure they are what you expect.
Settings >> General >> Signature
Settings >> General >> Vacation Responder
5. Review your ‘Send mail as’ settings to make sure they are using your correct email address.
Settings >> Accounts and Import >> Send Mail As
6. Check for filters that forward or delete messages.
Settings >> Filters
7. Check your ‘Forwarding and POP/IMAP’ settings for accuracy.
Settings >> Forwarding and POP/IMAP
Make sure you aren’t unexpectedly forwarding or downloading mail from anywhere; spammers frequently change these settings to ensure you continue sending spam even after changing your password.
*Big thanks to bck56 for compiling a comprehensive list of security tips!*
If you can’t access your account
Use the account recovery form:
www.google.com/support/accounts/bin/request.py?ara=1&hl=en&contact_type=ara&ctx=ara
It will ask you a series of questions about your account to try and prove that you are the true owner. If you cannot answer enough questions the first time around, we encourage you to keep trying! I’ve seen users succeed after multiple attempts; it can be tough, but we want to make sure we keep the bad guys out. At this time, the account recovery form is the only way to regain access to your account, but we want you to know that we are constantly working on improvements.
General Tips
-Be aware!
Be wary of messages that ask for your username or password. Also watch out for messages that link you to websites that look identical to the Gmail log in screen. These sites are not the real Gmail website -- don’t be fooled! So please be sure to check your browser’s address bar.
-Choose a unique password.
It is vital that you use a unique password for Gmail that you don’t re-use on any other website.
-Stay current with security updates.
We know it’s irritating when your computer or browser constantly reminds you to install updates. Do it anyway. Criminals can begin exploiting software flaws within hours of the problem becoming public, so time is of the essence.
-Keep your data secure.
That means regularly check for viruses and malware, perform operating system and browser updates, and change your password frequently. I highly recommend walking yourself through the steps listed here:
www.google.com/help/security/
Thanks for being vigilant about account security and taking the time to read this post.
Boo bad guys!
-MrEvan
-Be aware!
Be wary of messages that ask for your username or password. Also watch out for messages that link you to websites that look identical to the Gmail log in screen. These sites are not the real Gmail website -- don’t be fooled! So please be sure to check your browser’s address bar.
-Choose a unique password.
It is vital that you use a unique password for Gmail that you don’t re-use on any other website.
-Stay current with security updates.
We know it’s irritating when your computer or browser constantly reminds you to install updates. Do it anyway. Criminals can begin exploiting software flaws within hours of the problem becoming public, so time is of the essence.
-Keep your data secure.
That means regularly check for viruses and malware, perform operating system and browser updates, and change your password frequently. I highly recommend walking yourself through the steps listed here:
www.google.com/help/security/
Thanks for being vigilant about account security and taking the time to read this post.
Boo bad guys!
-MrEvan
More links:
Detecting suspicious account activity
gmailblog.blogspot.com/2010/03/detecting-suspicious-account-activity.html
Messages asking for personal information
mail.google.com/support/bin/answer.py?hl=en&answer=8253
More...
googleonlinesecurity.blogspot.com/