Feature-rich email is not only a powerful way of communication, but also a major security threat. The more features an email service provides the security holes are made for hackers. In addition to the usual email security headache - executable attachments - HTML messages introduce new problems. HTML is not a plain text, it is rendered and it may contain executable code. You get dozens emails daily. Every time you read an HTML email message - something could be executed. It is just like you would execute dozens of unknown programs daily.
When you view an HTML message, embedded images and stylesheets are downloaded from a remote web server. This is called a “web bug”. Your email client (via the built-in HTML viewer) sends to that web server all the information it needs to add you to email databases and more. For example, the URL of the image downloaded may look like: http://example.com/image/98989892991813482, where 98989892991813482 may be the database key for your email address. Thus the sender will know for sure that you have read the message. In most email clients you can not turn off the HTML mode.
Having an antivirus is a very big step towards overall security, but generic antivirus software alone can’t protect from all threats of HTML and MIME-based email.
The best way to keep yourself out of spam attacks is to keep your email secret! Don`t put it on forums, webpages, etc. If you do, put it so that the humans only understand (e.g. “john [at] gmail (dot) com”).
Keep multiple email accounts (e.g. one for friends, one for clients, etc). Gmail.com is a good service and is recommended. It also filters HTML for script attacks (e.g. gmail doesnt display all images in html emails).
The last but the most important - don`t open emails form sources you don`t trust or don`t expect to be emailed!
Article source: infosecuritylab
Related Articles
Secure Sockets Layer = E-commerce Security
By: InfoSecurityLab | 23/01/2007 | Security
It is not so hard to make a webpage, find something to sell and start making e-commerce! These days it is really easy, but much harder is to find customers and get their trust, because any business plan, even the most perfect, can totally fail without trust.
Security Using Public Internet Access
By: InfoSecurityLab | 23/01/2007 | Security
Internet comes to peoples lives and then suddenly comes truth, that WE CAN'T LIVE WITHOUT INTERNET. We can't even simple daily activities do without Internet, but not always we can use Internet at work or home. It is a fact and no one can deny that. Because more and more cities going wireless - get wireless network which spread all city so that everyone with laptop an wireless card can get access to the Internet, and also there are Internet café and other Internet access points.
Security Awareness
By: InfoSecurityLab | 23/01/2007 | Security
Security awareness is knowledge and attitude members of an organization possess regarding protection of the physical and information assets of that organization. Many organizations require formal security awareness training for all employees when they take up sensitive assignments and, in some cases, periodically thereafter.
Anti-virus Software Comparison Test
By: InfoSecurityLab | 23/01/2007 | Security
Virus.gr tested quite a few different software companies to see how they would stack up against each other. How did the 147,000+ virus test pan out?
Internet Attack Methods
By: InfoSecurityLab | 23/01/2007 | Security
The U.S. Government’s National Information Assurance Glossary defines Information Security as: Protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats.
Tips for Network Security
By: InfoSecurityLab | 22/01/2007 | Security
Network in nowadays give us possibilities communicate and do more other things possible and much faster. But not everything is so nice how we thing in first moment. There are a lot of threats which grow up every day in networking!
Computer Viruses
By: InfoSecurityLab | 23/01/2007 | Security
In information security , computer virus is a manmade program or piece of code that is loaded onto your computer without your knowledge and runs against your wishes.
E-commerce and Security
By: InfoSecurityLab | 22/01/2007 | Computers
More and more peoples in there daily life use computer to make things that previously they do without computer, for example, buy and sell! Of course, its takes less time and can be done from home, but not so offten peoples thinking about: how safe it is! And from other side seller invent, that he want to start e-commerce, but he not sure what it is and how its works!
More from InfoSecurityLab
Computer Viruses
By: InfoSecurityLab | 23/01/2007 | Security
In information security , computer virus is a manmade program or piece of code that is loaded onto your computer without your knowledge and runs against your wishes.
Internet Attack Methods
By: InfoSecurityLab | 23/01/2007 | Security
The U.S. Government’s National Information Assurance Glossary defines Information Security as: Protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats.
Security Using Public Internet Access
By: InfoSecurityLab | 23/01/2007 | Security
Internet comes to peoples lives and then suddenly comes truth, that WE CAN'T LIVE WITHOUT INTERNET. We can't even simple daily activities do without Internet, but not always we can use Internet at work or home. It is a fact and no one can deny that. Because more and more cities going wireless - get wireless network which spread all city so that everyone with laptop an wireless card can get access to the Internet, and also there are Internet café and other Internet access points.
Information Security Endangered
By: InfoSecurityLab | 23/01/2007 | Security
our time is coming. Spy programs are stealing information more easily. The reason is weak algorithms, which provide systems safety, for example data encryption and hashing.
Tips of Security
By: InfoSecurityLab | 23/01/2007 | Security
Information is the lifeblood of most, if not all, modern organisations, so protecting (this) information against unauthorised disclosure, modification or erasure is a basic requirement of management.
Anti-virus Software Comparison Test
By: InfoSecurityLab | 23/01/2007 | Security
Virus.gr tested quite a few different software companies to see how they would stack up against each other. How did the 147,000+ virus test pan out?
Security Awareness
By: InfoSecurityLab | 23/01/2007 | Security
Security awareness is knowledge and attitude members of an organization possess regarding protection of the physical and information assets of that organization. Many organizations require formal security awareness training for all employees when they take up sensitive assignments and, in some cases, periodically thereafter.
Active Virus Shield Aol
By: InfoSecurityLab | 23/01/2007 | Security
Anti-virus software takes much importance in information security. After posting article on Anti-virus software comparison.
Computers 
