When’s the last time you really thought about your email address? Not the name. Not the spam. What lives inside it.
Your bank statements. Test results from the doctor. Your retirement account. Your mortgage. Every streaming service. Every online store you’ve ever bought a sock or a toaster from. And every single password reset link you’ll ever need shows up right there.
A thief doesn’t have to break into your bank. They just have to get into your inbox. Once they’ve got that, they’ve got the keys to the whole house. One account opens every other door. That’s not a design flaw—that’s how email was built. And most folks still protect it with the same old password they’ve been using since Obama was in office. That won’t cut it anymore. Here’s how fast it goes sideways:
A hacker heads to your bank’s website.
Clicks “Forgot Password.”
Types in your email address.
The bank sends a reset link straight to your inbox. The criminal—already sitting there—clicks it, sets a new password, and strolls right in. Then they do the same thing to your Amazon account. Your PayPal. Your investments. Each one takes about a minute. Less time than ordering a pizza.
The FBI calls this account takeover fraud. And here’s the kicker: 81% of victims said they thought they were “pretty careful” about security before it happened.
These three items will help you protect your email address.
1. Get yourself a real password.
If it’s under 16 characters or you’ve reused it anywhere else, change it today. Use a password manager (Dashlane, Nord Pass) to create something nobody could guess in a million years. You remember one master password. It remembers the rest.
2. Turn on two‑factor authentication. But not the text kind.
Those SMS codes can be stolen through something called a SIM swap—where a criminal sweet‑talks your phone company into giving them your number. It’s way easier than it should be. Skip the texts and use an authenticator (Microsoft and Google both have one) instead. Takes five minutes.
3. Check every app that has access to your email.
Every time you click “Sign in with Google,” you hand over a key. Some apps can read your messages. Some can send email as you. One of the advantages of a password manager is it will notify you if you have duplicate passwords on several sites. One way to clean up your apps is to use the following method:
myaccount.google.com > Security > Third‑party apps with account access
Your bank has a fraud department. Your credit card has zero‑liability protection. Your email? That one’s on you.
This is your magazine! If you have a story, friend, photo, recipe, pet, or content to share please reach out to maryalexander@bestversionmedia.com.
