5 Bad Email Habits That Can Compromise Your Security

Most organizations can hardly imagine how they would function without email. Indeed, it’s estimated that the average white-collar worker receives around 120 emails each day.

Unfortunately, not all emails office workers receive come from legitimate senders, but don’t let the fear of unsafe emails hold you back. By adopting safe email practices, you can empower yourself to protect your organization from cyber threats and keep your inbox secure.

Bad Email Habits To Avoid

1. Downloading and Opening Unverified Attachments

A 2021 HP Wolf Security Threat Insights Report revealed that email is still the most popular way for cybercriminals to deliver malware, with more than 75 percent of threats being sent through email messages.

Email is still the most popular way for cybercriminals to deliver malware, with more than 75 percent of threats being sent through email messages.

(Source: www.zdnet.com)

Knowing that even the most reckless employees wouldn’t click on obviously malicious file attachments, most cybercriminals cleverly disguise malware as legitimate file archives, PDF files, office documents, and other common file types. These hackers also love to “bait” you with free offers because it works so well.

Solution: Employees should be taught to never download and open any email attachments without scanning them for malware first and verifying they come from a trustworthy sender. For extra convenience and protection, attachment scanning can be automated at the email server level.

2. Carelessly Clicking on Outbound Links

While most employees know about the threat of malicious attachments, they often don’t realize that one click on an outbound link can be all it takes for malware to infect the entire network.

The reason why they don’t realize that carelessly clicking on outbound links can have such disastrous consequences is simple: they’re not aware of fileless malware, a dangerous threat that was responsible for 30 percent of all detected incidents between January 1st and June 30th, 2020.

Fileless malware, a dangerous threat that was responsible for 30 percent of all detected incidents between January 1st and June 30th, 2020.

(Source: www.blogs.cisco.com)

Solution: Because fileless malware is downloaded from a remote server directly to memory, traditional email attachment scanners are ineffective against it. Therefore, cybersecurity awareness training is the most effective form of protection.

3. Sharing Sensitive Information in Plain Text

Email was not initially designed with security in mind. Although many security features have been added over time, sharing sensitive information through email remains a big cybersecurity risk. There are several reasons for this.

The person on the other side could actually be someone else, using various email spoofing techniques to hide their true identity. It’s also possible for email messages to be intercepted by a third party, especially when using a public Wi-Fi network. Last but not least, an attacker could gain access to your inbox by stealing your password, which would give them unrestricted access to all sent and received emails.

Solution: If you absolutely have to share sensitive information via email, then make sure to encrypt it using an encryption method like OpenPGP so that only the intended recipient can read it.

4. Responding to Spam and Obvious Phishing Attempts

Around 320 billion spam emails are sent every day. Many of them land in the inboxes of employees whose email addresses are published online, making it easy for spammers to scrape them in large quantities.

When it comes to email spam and obvious social engineering attempts, there’s one rule you have to remember: never respond. By responding to spam and phishing, you only encourage the attackers to target you even further.

Solution: Mark all spam emails accordingly by clicking the Spam button. Doing so helps improve the accuracy of your spam filter, and it also stops you from opening malicious emails by mistake.

5. Not Keeping Your Inbox Clean and Organized

If your desk is messy, it doesn’t take much for important documents to be misplaced. Likewise, a messy inbox where unread messages from legitimate senders sit right next to spam, newsletters, and other unwanted email messages is difficult to navigate.

When frantically searching for the right email message in your messy inbox, you could accidentally open a phishing email and download an attachment containing dangerous malware. 

Solution: Prevent that from happening by striving to keep your inbox clean and organized. Ideally, you want to instantly categorize all new messages so that your inbox is constantly empty unless there’s an unread message inside.

Bottom Line to Bad Email Habits

Despite the growing availability of business communication platforms and instant messaging tools, email is here to stay. As such, it’s important for its users to eliminate poor email habits that can compromise their security and lead to costly data breaches.

If you would like Teal to help you improve your email security, contact a business technology advisor today.

Teal offers responsive and secure managed IT services to SMBs nationally, with local business IT solutions provided in:

Latest Teal News

Subscribe to Our Newsletter

Join Teal Exclusive now to be notified of the latest news, tech tips, and more.

Recent Articles
Don’t Stop Here

More To Explore

Discover everything you need about managed cybersecurity triage response.

What Is Triage in Cybersecurity?

Discover everything you need about managed cybersecurity triage response in this article – including the definition, analysis, and more.