Commonly all the Mail service provider uses the SSL and
strong security measure to make it safe, but can they see you’re mail/online
account data? Let’s join and see what inside!
Welcome all, you
all knows most of the Mail or such online account is protected by SSL while
opening, Smart people sees HTTPs before they provide any login detail to log in
and they are safe. Does this make sure, no one else can see your mail, online photos,
documents and your all other personal data? Are even mail providers able to see
that?
There are many
Sweet and harsh truth you must know,
Typically your
entire Mail provider can see your Mail and all the data inside it, without
knowing your password.
They will defiantly
read your mail if required by law or government forcemeat. This is one of the
point I can say, but wait that’s not all over.
Why SSL can’t protect your online Data?
SSL is secure
socket layer, this make you all to send your Emails, Login details, passwords,
credit card details to server end by encrypting them with stronger key and make
it protected by hacker or MITM.
Once your data,
mail, document is sent on the server, SSL’s work is done, now that’s all saved
there in plain text, files and common accessible format. Anyone authorized on
the server end can read your mail when required but this is not the only issue,
because they’ll not!
Again see the Title
of the post, I’ve mentioned they, once your data is there on server, what if server is hacked,
someone get over it! Yeah they will defiantly read your emails and documents
and all.
Do your email providers know your passwords, how they can do it if not.
Well you remember Security
questions? Yeah that stupid question asked during the Signup process, they can
see your personal security question on your database on server, doing some
research with your social account or social engineering they can easily get
your answer for that and BEMM, they’re
done.
This might seems
strange but we have real life example of Sarah palin (You can check the Wikipedia
link here). And such cases are possible until the stupid security question
and their answers exist.
First, they are
trying hard not to affect the users’ internal data because of governmental interference.
Second they provide
an awesome way to activate two way authentications for login.
And be sure no one
else can login even if they know your password.
What are more possibilities
for your Emails insecurity?
When you send your
email, its saved to your Sent item, receiver’s inbox, even multiple copies of
that, even backup copies of those mails from your side, from receivers side,
from your server, from their server.
In short, your data
can be anywhere on the globe, hacker can attack on any of the related system
get your mail, data and all.
Stopp now, let me
tell you how you can protect it?
Well no one can
guarantee for 100% safety, but you can take some security measure by yourself.
I can suggest some
of them to you.
Mail.google.com and mail.google.com.Inbox.example.com
or mail.googole.com
is totally different thing, be aware. Original site name is just before .com
here it is example, so be aware of login on these sites,
If you are saving
document on the cloud or on mailbox, you can encrypt them before uploading this
will make sure your data is safe.
Key loggers are not
installed on your system, or the system you are using.
SSL certificate is
not spoofed.
You have a strong
password.
Final words
Your Email service
provider can read your email in any way by little effort if they need, but they
won’t.
Your have safe and
secure system, strong password and encrypted document to save on cloud with
their key backed up with you.
Any other point you
want to add ask discuss, welcome, please leave the comment below.
No comments :
Post a Comment