Gmail from Google is one of the most popular and yet most vulnerable e-mail services. Backed by the largest search engine in the world and with over 1 billion e-mail users and a corresponding amount of payment and confidential information, you can be sure that it attracts scammers. This inspired us at Hideez investigate the topic and provide tips on how to secure your Gmail account in 2019.
So, is there a way to protect yourself against all odds in a digital world?
There are a few steps you can take now to make your Google account safer and more secure. Gmail is used not only as a Login for Android, a popular operating system for activating and accessing the Play Store, but also as an access point to many different platforms like AdSense, YouTube, Analytics, AdWords, and more.
Techniques like social engineering or phishing are used to lead users into deception and giants like Google are often targeted by massive attacks like the one on May 4, 2017.
Passwords are relatively easy to determine. People are not very creative when it comes to generating passwords; they commonly use their date of birth, address, phone number, social security, car’s registration number, mother and father’s name, etc. Make sure you choose a long, random password that has a combination of lowercase and uppercase letters, numbers, and special symbols.
Ideally, you can use a one-time-password (OTP) generator. There are a few solutions for OTP generators like Hideez Key or FIDO; it is up to you to choose.
Login Sessions Review
At the bottom of your Gmail account page, you may see “Last Account Activity”. In the tab “Details”, you can review recent logins, IPs, country, and applications using your credentials, etc. It gives you insight into potentially suspicious activity like logins from locations you’ve never been to or applications you have never used. If you see anything like this, change your password immediately and add a second factor of authentication.
Two-factor authentication (2FA) is a recommended and yet still not a very popular security method. 90% of Gmail users are not protected against cyber-attacks despite the fact that two-factor authentication was introduced by the big G back in 2011 and only 10% of users realize the potential impact of being hacked. This security practice verifies your identity when you log into a website by requiring you to both know something and have something. The thing you need to know is a user name and a password or a PIN; the thing you need to have is a mobile phone, USB device or other wireless token like Hideez Key that can generate one-time codes.
Many services that you use offer and recommend 2FA. These include: Apple (iCloud and other services), Google (Gmail and other services), Microsoft Office 365, Yahoo!, PayPal, Dropbox, Facebook, Twitter, Instagram, LinkedIn, SnapChat, Tumblr, etc. Yet, end users ignore this recommendation as not convenient or
Of course, two-factor authentication can be annoying, especially when you have multiple accounts for different purposes and all of them send you an SMS to prove your identity. As an alternative to SMS, you can use Hideez Key password manager to store up to 1,000 passwords for different accounts and seamlessly prove your identity.
How do you setup 2FA for your Gmail account?
First, go to your Gmail account, then open your profile, select ‘My Account‘, then click on ‘Sign-in and Security‘, open ‘Passwords and Sign-in Methods‘. Scroll down to Password to see the 2-step verification option and turn in to 'ON'. Enter your mobile phone number and verify it.
Freaky or Not So Freaky Attachments
Got an invitation to a party from a stranger? Or a check for $100,000? Unlikely it is a blessing, and if it has an attachment, it might be malware or ransomeware that could breach in your account and steal your credentials, like for example Vega Stealer.
Random Security Questions
Do you always put your mom’s maiden name as a security question to your bank account? Or your license plate number? Or your Dad’s middle name? Are these things really that hard to guess? We recommend changing your security questions now and then, and using different ones for different services. If possible, select your own.
Setting up security questions for Gmail
Go to your Account. Click on the gear icon (settings) > Accounts and Import > Google Account Settings. Now select ‘Change password recovery options’ and add a security question.
Use a Secure HTTPS connection
HTTPS or Hypertext Transfer Protocol Secure is used for secure communication between your browser and the server of the website you are visiting. Some websites are protected with a dedicated IP address and SSL certificate, and some of them are not. As an e-mail marketer, you probably visit tons of websites daily for content, so we recommend using HTTPS Everywhere extension for all your web travels.
Is Gmail Secure in 2019?
Yes, Google does a great job for their email service, but by following a few simple rules you can make your account even more secure.
Stay alert and protect yourself.