[AretNCarlsen]

To beat the old drum: Email isn't intended to be secure anyway. Relying on email addresses to maintain privacy and authenticity is like relying on Caller ID to verify callers' identities. (See spoofcard.com.)

Encrypt, encrypt, encrypt. Or, encrypt.

[darksaga]

Yeah, it's still shocking to me how many fortune 500 companies still don't understand how vulnerable they are to simple hacks like this. I would've thought it would be SOP (standard operating procedure) to encrypt their email years ago.

I guess a normal level of paranoia hasn't quite reached those companies yet huh?

[pinko]

No, email encryption is a godawful mess and impossible for normal humans to use.

And you can't control who sends you email.

[dmix]

You can encrypt your way out of typos and domain-squatting?

[RyanMcGreal]

Squatters can't use your email if they can't read it.

[eru]

They could only do traffic analysis.