Error 404 Learning Guide
Lesson 1Lesson 2Lesson 3Lesson 4Lesson 5Lesson 6

โ† Back to Start Here

Securing Your Email Account

If you only protect one account properly, protect your email.

Your email is not just a place where messages arrive. It is often the recovery door for the rest of your digital life.

When you forget a password, where does the reset link go?

Usually to your email.

Your email is your digital identity

Many websites trust your email address. Shopping accounts, social media, cloud storage, banks, government websites and apps often use it to confirm who you are.

If someone gets into your email, they may be able to reset passwords for other accounts too.

That is why email security matters so much.

Use a strong unique password

Your email password should not be reused anywhere else.

It should be long, unique and saved in your password manager.

If you have used the same email password on other websites, changing it should be one of your first digital hygiene tasks.

Turn on 2FA

Your email account should have two-factor authentication enabled.

This means that even if someone learns your password, they still need the second step to log in.

Save the recovery codes when you set this up. They are not optional. They are your backup plan.

Check your recovery options

Email accounts usually have recovery options such as a backup email address or phone number.

Make sure these are still yours and up to date.

An old phone number or forgotten recovery email can become a real problem when you need to recover your account.

Review active sessions

Many email providers show where your account is currently logged in.

Look for old phones, old laptops, unknown locations or devices you no longer use.

If something looks strange, sign it out and change your password.

Be careful with reset emails

Password reset emails are powerful. Anyone who controls your email can often control other accounts.

Do not click reset links you did not request. If something looks suspicious, go directly to the website yourself instead of clicking the email.

What you can do today

  • Change your main email password to a strong unique password.
  • Save it in your password manager.
  • Turn on 2FA.
  • Save your recovery codes.
  • Check that your recovery phone number and recovery email are correct.
  • Review devices and sessions that are logged in.

Common mistakes

  • Reusing your email password on other websites.
  • Not enabling 2FA on email.
  • Ignoring recovery codes.
  • Keeping an old phone number as recovery information.
  • Clicking password reset links you did not request.

What you learned: your email account is one of the most important accounts you own because it can unlock many others.

Next section: after passwords and email, the next big topic is your phone.

Back to the lesson overview

Finished the first six lessons?

If these lessons helped you, you can support Error 404 by donating, sharing the website, or following along on Mastodon.