Emails are used every day for communication, and many countries and organisations mostly use email for official communications. It is highly valued and recognised for confidential conversations and transactions in day-to-day business. The Often use of this channel and the quality of information it carries attracted cyber attackers to it. There are many existing techniques to mitigate attacks on email, however, the systems are more focused on email content and behaviour and not securing entrances to email boxes, composition, and settings. This work intends to protect users' email composition and settings to prevent attackers from using an account when it gets hacked or hijacked and stop them from setting forwarding on the victim's email account to a different account which automatically stops the user from receiving emails. A secure code is applied to the composition send button to curtail insider impersonation attack. Also, to secure open applications on public and private devices.

翻译：电子邮件被广泛用于日常通信，许多国家和组织主要依赖其进行官方通讯。在企业日常运营中，该渠道因其在机密对话与交易中的价值而备受重视。该渠道的频繁使用及其承载信息的敏感性，使其成为网络攻击者的重点目标。现有多种缓解电子邮件攻击的技术，但现有系统更侧重于邮件内容与行为分析，而非保护邮件入口、撰写与设置环节。本研究旨在保护用户的邮件撰写与设置功能，防止攻击者在账号被入侵或劫持后利用该账号，并阻止其在受害者邮箱中设置自动转发至其他账号（该设置将导致用户无法接收邮件）。通过在撰写邮件的发送按钮上部署安全代码，减少内部冒充攻击；同时强化对公共及私人设备上已打开应用的安全防护。