Skip to main content

Safeguard your email: tips for making your account more secure

Between phishing attempts and classic “Nigerian” email scams, there are plenty of threats to the integrity of your email account. Even if you think you would never fall for a blatant attempt to get you to give up sensitive data, you might still be vulnerable to various kinds of hacking attempts. It’s never fun to have to explain to all 347 of your contacts why your email address has spammed them with a link for buying knock-off Oxycodone. Ultimately, email security remains an essential part of maintaining your privacy online.

In fact, the U.S. Senate’s proposed amendment to the Electronic Communications Privacy Act aims to make it harder for law officials to search through your old emails. But if you care about protecting your information, why wait for the Senate to take action? Follow our tips to make your email account safer from prying eyes. We’ll start with general suggestions and then cover some nifty tricks just for Gmail.

Password security

If you’ve worked at a desk job within the last few decades, you’ve probably heard dozens of lectures about how important it is to choose a secure email password. As boring as the topic may seem, it gets repeated for a reason. A ridiculous number of vulnerabilities can be avoided with a strong, robust, and frequently changed password. Don’t forget to make your security question a tough one, too.

If you have trouble inventing new passwords, try the sentence method: come up with a sentence that would seem obvious only to yourself, such as “My dog Spot eats steak quickly!” Then, turn it into an acronym and add a number for good measure, so that you wind up with, “MdSesq!64.” Your new password will roll off your fingertips while seeming impenetrable to anyone else. Of course, if you’re still having trouble remembering, you can always use a password manager app.

As important as it is to have a strong password to begin with, it’s just as essential to remember to change it often. To keep yourself honest, set a recurring reminder on your favorite calendar app. We recommend changing your password every three months to stay safe.

Avoiding cookies, viruses, and malware

This may go without saying for long-term Internet denizens, but general online security practices can help keep your email account safer, too. It’s helpful to set your internet browser to automatically clear all cookies every time you close the browser window. In Chrome, for instance, you can do this by opening “Settings,” clicking on “Advanced Settings,” clicking under “Content Settings” beneath “Privacy,” and then choosing “Keep local data only until I quit my browser.”

Additionally, you’ll definitely want to install dependable anti-virus and anti-spyware programs, keep them up to date, and run scans of your computer regularly. If you don’t know where to start, well-reviewed freeware such as Avast Free Antivirus, Microsoft Security Essentials, and Super AntiSpyware are all good bets.

Public key encryption

Email encryption using public key cryptography is practically the next best thing to printing all your emails and locking them within an impenetrable bank vault. Essentially, it generates two different keys for every message: an encryption key, which is completely public; and a decryption key, which is private to each user. The beauty of the system lies in the fact that users don’t need to send a secret code ahead of time before exchanging encrypted text. With public key encryption, even if someone gets ahold of your email password, all they’ll see is gibberish without proper decoding.

All public key encryption is based on software called PGP, which stands for “Pretty Good Privacy” and is available through a number of free programs. Try your hand at using Gpg4usb, Pgpi, or Enigmail (for Thunderbird only), and enjoy the exhilaration of feeling like an international spy.

Cross-website security with Tor

Even though they offer spectacular free email services, companies such as Google have a nasty reputation for collecting your browsing patterns across the Web. That’s where the free program Tor comes in. Originally developed with the U.S. Navy in mind, Tor now allows any security-minded individual to avoid cross-website tracking, thus safeguarding online privacy during email sessions. Basically, Tor blocks what’s known as “traffic analysis,” which can reveal a message’s source, affiliation, and other characteristics, even if that message contains encrypted data. Keep in mind that it will block browser plugins and downloaded files while running.

Anti-theft security with Prey

We hope it never happens to you, but if your computer does get lost or stolen, Prey may be your last best hope. Simply register your computer and download the free Prey software ahead of time. If your beloved device ever goes missing, you’ll be able to use Prey from afar to manage it. You can lock your computer, as well as delete all browsing data and cookies, from the safety of your home. That way, thieves won’t  be able to log into your email account. Prey can even attempt to geo-trace your device and snap webcam photos of whomever’s using it, making it an invaluable detective’s tool.

Gmail-specific tips

Thanks to  a healthy array of security options, Gmail provides one of the most secure email services out there. If you’re using Gmail, you’ll definitely want to try out these privacy measures.

1. 2-step verification: With 2-step verification, your Gmail account will require more than just a password every time you log on. It will also text a 4-digit code to the phone number you have on file, which you’ll need to enter before you can access your email account. While cumbersome – and ill-advisable for those without unlimited texting plans –2-step verification does add an extra layer of protection.

2. Always use HTTPS: In your Gmail account, click on the gear icon in the top right-hand corner, then select “settings.” Under “Browser connection,” highlight “Always use https.” With this option, Gmail will establish a secure connection during sessions, from login to logout, even if you’re using a public wireless network.

3. Modified email address: It may surprise you to know that Google doesn’t count anything after a plus sign as part of an email address. What does this mean for you? Well, simply add a “+” to your email address every time you provide your email to a company, and soon you’ll have a surefire way to discover which companies are sending you spam. For example, if your normal address is and you’re about to sign up for a website called Kitten Cute, you can use as your email address for that site. That way, if you ever get spam addressed to “johnsmith+kittencute,” you’ll know exactly where it came from, helping you stay away from suspicious and potentially fraudulent messages.

Image via Elhombredenegro

Editors' Recommendations

Mika Turim-Nygren
Former Digital Trends Contributor
Mika Turim-Nygren writes about technology, travel, and culture. She is a PhD student in American literature at the University…
Use this trick to make your online accounts super secure
A group of people sitting at a desk looking at 1Password displayed on a screen.

We do just about everything online today, and in the digital age, having good passwords for your accounts isn’t sufficient anymore — and if you’re still using the same login credentials for multiple accounts, then it’s definitely time to upgrade your security setup. An easy way to do that is with a password manager that makes it simple to create and organize secure access codes for all of your accounts, but even that might not be enough to guard your sensitive personal and financial information from prying eyes. Instead, we recommend 1Password, a unique account manager that does more than just organize your logins. It also takes online security to a whole new level by letting you keep all of your accounts completely separate.

Your typical password manager can generate and organize unique credentials for your accounts (sort of like a digital key ring), but 1Password takes things a step further. With 1Password, you get not only a unique, strong passcode for every account, but the app also generates a unique email address as well. When signing up for a new account somewhere or updating some you already have, you simply create a new 1Password-generated email string and password, set up two-factor authentication, and use this new “sock” email and passcode to register. Your real information is kept private, and access codes are securely backed up in your 1Password account, for which you have a master password — the only one you need to remember.

Read more
5 simple tricks to make your email routine more productive and less of a burden
A man's hands typing on a laptop.

Email is an undeniably useful communication tool, but when used improperly, it can transform into a time-sucking, attention-stealing, always-on stress inducer that's more of a burden than a benefit. If you find yourself dreading your inbox every day, check out this list of pro techniques that can help you flip the script and transform email back into the productivity tool it's supposed to be.
Set (and broadcast) your off-hours
To keep email from creeping into the nonwork hours of your life, it’s a good idea to establish off-hours -- not just by mentally committing to not check email during certain times of the day, or even by turning on do-not-disturb settings to block email notifications (which is also a good idea), but by also setting your out-of-office reply to kick on after working hours. This helps manage expectations and will help establish boundaries with your co-workers, but without completely blocking off communications if something urgent pops up.

It can be a bit unnerving at first if you're used to checking email at all hours of the day, but over time, you'll find that checking email during specific hours of the day encourages you to be more focused and efficient during the time you've blocked off.
Take control of the cadence

Read more
How to stop your emails from being tracked, and preserve your privacy
Woman Checking Her Email

Did you know that opening an email can send a world of information back to its sender? It can. Including when you opened it, how many times you opened it, where you were when you opened it, and much more. Like Apple iMessage and Facebook Messenger receipts, emails can share detailed information about when a recipient views a message and their actions. If you want to keep your email private, follow this guide on keeping your emails from being tracked.

If you are considering how to keep your online life secure, be sure to check out our article on how to make a disposable email address and stay safe around the web.
How are emails tracked?
Pixels are one of the most popular ways to track an email. A small image, the size of a single pixel, is often attached to the email's end. When your email client loads the picture, your email service must retrieve it from the sending server; this server can then log when your email service loaded the image to understand when (and if) you opened the email. Additional information, such as your IP address, can alert the server to where you were located when you opened the email.

Read more