Call IDCARE
AU: 1300 432 273   or   NZ: 0800 201 415
Get Help Now
Get Help
Report Phishing
Report phishing
Incident Response
Incident Response

Email Detection Tips

IDCARE's Learning Centre
Learning Centre
Fact Sheets
How to Videos
Apps & Tools
Social Media
Contact IDCARE
Email takeover or access is one of the most common forms of identity compromise.

Email takeover or access is one of the most common forms of identity compromise.

Email Detection Tips

Check your email accounts to ensure they are secure. Specifically check there are no ‘unknown’ email addresses attached to your account.

Yahoo Mail Tips

Yahoo Mail Tips

Outlook/Hotmail Tips

Outlook/Hotmail Tips

Gmail Tips

Gmail Tips

Email Detection Tips

Check your email accounts to ensure they are secure. Specifically check there are no ‘unknown’ email addresses attached to your account. You can usually check this by looking for headings such as: 'Filters and Blocked Addresses'and 'Forwarding and POP/IMAP' sections (wording may change depending on your email provider). You can also check any Recent Activity on your account. You are looking for any devices or locations that do not reconcile with your usage. It is recommended you use ‘2 step authorisation’,for example an SMS message will be sent to your phone whenever there are any changes to your account.

Some tips for securing your email:
  • Go to the website of your email provider, and log into your email account.
  • Look for any external users/devices connected to your email account that you don’t recognise. This will vary from one email account to another, but usually involves looking in your security settings and searching for your last account activity. You can see your sign-in history, including the dates and times that your email account was used. You can also see the IP addresses which were used to access your account. Signing out of these sessions may ensure that external users that where on the account have been eliminated.
  • Check for email redirection or mail forwarding and remove any rules or addressed that have been applied.
  • Check that the recovery email address and phone number are recognised by you. It is recommended that you consider changing the recovery email address and start fresh.
  • Check both your Inbox, Archived Files and Trash for any password reset emails from other services or accounts linked to your email address not instigated by you. The hacker could have attempted to change your password on other sites, using access to your email to perform password resets.
  • Checking your mail boxes (including sent emails) for dodgy replies will help identify anyone who was targeted from your contacts list. If you do find someone has been contacted by the hacker, let them know that you didn't send the email to them. If possible do this via another communication channel (ie: a different email address, text, or phone call).
  • Change your password to something long and strong, using multiple cases,numbers and special characters. Ensure this password is not used for any other online accounts. Nor should it be similar to any other passwords.
  • Once you’ve changed the password for your email account it is important to change the password of any other accounts with other services such as banking, PayPal, Facebook, Twitter. Prioritising those accounts that did share the same or similar password as your compromised email accounts

BACK TO eMAIL RECOMMENDATIONS
Disclaimer

Identity Care Australia & New Zealand Ltd (IDCARE) provides identity and cyber security incident response services (the Services) in accordance with the following disclaimer of service:

IDCARE is Australia and New Zealand’s national identity and cyber incident community support service. We are a not-for-profit charity.

  • The Services provide do not constitute legal advice. IDCARE recommends that you consult a solicitor in relation to your legal rights and obligations, including but not limited to your legal rights or obligations under Australian and international privacy and data protection laws.
  • While every effort has been made to ensure the accuracy of the information in this product or service, to the maximum extent permitted by law all conditions, terms, representations, and warranties (in each case, whether express or implied) in connection with the provision of the Services which might otherwise be binding upon IDCARE are excluded.
  • IDCARE’S liability for any loss or damage suffered by any person or organisation (including, without limitation, any direct, indirect or consequential loss or damage) arising out of or in connection with the Services (including without limitation liability for any negligent act or omission, or statement, representation or misrepresentation of any officers, employees, agents, contractors or consultants of IDCARE) shall be limited to the fees paid by you to IDCARE in respect of the Services. For the avoidance of doubt, this limitation of liability extends to any liability arising from any actions performed or not performed as a result of any recommendations made in course of providing the Services.
  • The Services provided by IDCARE are intended to be provided solely to the initial recipient of this document or service and IDCARE will not be liable to any other person who may receive this document.

While every effort has been made to ensure the accuracy of the information in this alert, IDCARE disclaims any liability to any person in respect to any actions performed or not performed as a result of the contents of the alert or any accompanying data provided. Wider dissemination may be permitted by authority in writing from IDCARE’s Managing Director. If you would like to provide feedback please use our Feedback Form.