4 Email Account Security Tips

Posted on by
Reply

submitted by Peter Chronis

These days criminals are using a variety of techniques to compromise and gain access to accounts across the Internet.  They then often use these compromised accounts to send spam or gain unauthorized access to a victim’s private information (emails, banking information, etc.).

Just take a look at all the recent stories about stolen passwords and hacked accounts from some of the most popular sites on the Internet today.

phishingpasswordsTo reduce the risk of getting your accounts hacked into or compromised, we recommend that you take the following precautions to protect yourself:

1. Be Careful What You Click
Never reply to emails or click on email links that ask for your username and password. Our spam prevention partners have tracked a significant increase in phishing worldwide. Criminals often use phishing scams to help gather credentials.  Phishing is a term used to describe false emails sent from spammers claiming to be sent from a legitimate company (for example, EarthLink or well-known banks) and asking for your username and password. These fraudulent emails may look quite authentic – so beware.

2. Use Varying Usernames and Passwords
Don’t use the same username and password across multiple sites like email, banking and social network sites. Recent security research revealed that, on average, people use the same credentials to log into 49 different sites. Email usernames and passwords can be acquired from security breaches suffered by other service or product providers (tens of millions of credentials have been reported this year alone by other service or product providers). If you are using the same password for your EarthLink account as other accounts that were breached, then spammers may use this information to access your EarthLink email and send spam.

For these reasons, it’s good to have a system to generate strong, unique passwords for all the sites you use. Just follow these three simple steps.

You can change your EarthLink password here at any time.

3. Run an Antivirus Program to Curb Malware Infections
Some malware today is designed to run stealthily on your computer while it records the usernames and passwords to sites you access (your Web Mail, online banking, etc.).  Some security firms are reporting malware infection rates as high as 1 in 3 computers worldwide.  To protect yourself, the first step is to run an antivirus scan on your computer.  This can be done with any antivirus program of your choice.  EarthLink offers Norton 360 Online as a premium antivirus subscription with a Free 30-Day Trial if you want to check it out.

4. Choose Your Secret Hint and Word Wisely
A secret word or hint is often used to verify your identity when account changes are being made. You should not use information associated with you that is readily available on the Internet or through other sources. If you are unsure, try doing a quick Internet search for yourself to see what you can find.  If you can find it, so can a hacker.

Stay safe out there and never hesitate to reach out if you have additional questions around email or password security.

For further support from EarthLink, visit our Knowledgebase Support Center.

LinkedIn Passwords Stolen – What You Should Do

Posted on by
Reply

LinkedIn is a popular social network for professionals wanting to promote themselves and their careers, connect with current and former business contacts, and build their businesses. So you may already have joined the site.

If you are a LinkedIn user, please read on.

Yesterday, LinkedIn confirmed that some of their users’ passwords were stolen. While they are investigating the issue further, here is what they recommend that you do:

password security tips

  • If LinkedIn thinks your password was compromised, your account password will be disabled and you should get an email with instructions (but no links) giving you the first steps to resetting a new password.
  • Follow the steps in the first email and you’ll get a second email from LinkedIn with a password reset link.
  • LinkedIn also advises you to review their advice about password security.

Even if you don’t get an email from LinkedIn, you may want to proactively change your password, and use it as an opportunity to create an even stronger password.

As an Internet service provider with 18 years of experience safeguarding our members’ accounts, EarthLink has long promoted the value of creating strong passwords that you keep private and secure.

Want to know more about password security? Read our blog post about protecting your passwords, this post with a system you can use to generate strong passwords without repeating them, and this password help from the EarthLink Support Center.

If you wish to change your EarthLink password, use the Password Reset Tool on our My Account page.

We also had a link to download the free LastPass password manager from our eLink newsletter for Internet access members (scroll down to the Download section).

eHarmony users: Dating site eHarmony also confirmed a password security breach yesterday. You can read about that password security problem here.

LastPass has created tools to help you check if your LinkedIn password or eHarmony password was stolen.

Three Simple Steps to End Password Repetition

Posted on by
Reply

Pretend you’re a successful real estate mogul. You own properties all over the world. You want to keep these properties secure and you’ve installed deadbolts on all the doors of each building. You’re very efficient, and so rather than carry around a huge key ring, you’ve just coded all the locks to a single key.
This makes things so much easier. Especially for the kid you paid to watch your dog gets his hands on your master key. Of course, if we were millionaire real estate moguls, we’d never make a mistake like that. We’d get different keys for each property. So why do we make this mistake with our passwords?
Continue reading

Lessons Learned and The Importance of Unique Passwords

Posted on by
Reply

On December 11th, 2010 the blog Gawker was attacked by cyber criminals who were able to penetrate Gawker’s systems and steal their subscriber’s user names and passwords. The following day, criminals posted this information on the internet, posting over a million usernames and passwords. Many individuals used the same user name and password on the Gawker site as they did on consumer email, banking and other platforms. Hackers began using the posted information to begin randomly checking the compromised usernames and passwords on popular social networking, banking and internet service provider log in sites.
While it is easier to utilize just one user name and password for all of your online activity, this increases your online risk if your online credentials end up in the hands of a criminal. EarthLink recommends using a unique user name and passwords for all sites you use on the web.
Other security tips include: