While we use many tools to communicate on a daily basis, the most sensitive information is still communicated by email. All xneelo hosted domains have access to a free Let’s Encrypt certificate, which can be used to secure both your email and your website

When you send or receive an email without encryption, the content of your email and your mailbox login credentials are sent in plain-text form, making it possible for cybercriminals to intercept and misuse your information. 

What is encrypted mail?

Encrypted mail means exactly that –  your data is protected while in transit, making it almost impossible for unauthorised users to steal your mailbox login details or read – and tamper with – your emails while they travel across the Internet. 

In essence, the connection between your device and our server is encrypted, making sure your mail reaches its intended recipient securely. 

Quick and easy setup

The auto-config tool (for Mac Mail, Outlook and Thunderbird) and our step-by-step email setup guides default to encrypted mail settings, making the setup of mail quick and convenient. 

While we have always offered encrypted email using the server name, this sometimes led to certificate-related security warnings. As our free Let’s Encrypt certificates are associated with your domain name, you should no longer receive any of these warnings when your domain name is correctly stipulated in your mail settings. It should be noted that this feature is only available if your mail and website are hosted on the same xneelo server. If not, encrypted email is still available by using the hosting server name in your mail settings.

While the content of your email is encrypted between your device and our mail server, it is still good practice to send sensitive information like passwords via other secure apps and not by email as the recipient may not be making use of these measures. 

Three additional tips for email security: 

1. Use a strong and unique password

Your password should contain a minimum of 11 characters, with at least one uppercase letter and one number for added resilience. Password apps can help you generate a strong password if you can’t think of one. You should also consider using a password protection app like 1Password or LastPass, which allows you to store all your vital information in a central, encrypted space. Never store – or share – your passwords in plain text. And do not use the same password across all your applications. 

2. Be careful when opening an attachment

Before opening any attachment, even from a ‘reputable’ source, read the body of the email. Look out for typos or spelling mistakes, or anything that just doesn’t look quite right. Often, scammers spread viruses and other malware through attachments. By opening a malicious attachment, scammers can access your passwords and steal your information. 

Always double-check the sender’s email address before opening anything or clicking on any links. If in doubt, rather check with your IT department where possible. 

3. Do not share sensitive information

We’re all guilty of sharing sensitive information via email – security experts call it ‘data leakage’. If you can’t get around sharing certain information, consider calling the other party and sharing the necessary information over the phone, or use a service like Google Drive to share files or documents. Just make sure the email address you’re sharing the Google file with is legitimate. 

We understand that your website and email security is just one of the many things you need to think about to keep your business running securely. That’s why we’re doing all we can to support you and make your job a little easier.