Yandex.Mail mailbox security

Yandex.Mail verifies the sender's identity by their DKIM (Domain Keys Identified Mail) digital signature. If the email has a digital signature, it means that it was not intercepted and changed after it was sent from the mail server. The signature can only be set by the administrator of the server sending the message.

If you see the or icon to the left of the sender's address, it means that the digital signature is incorrect. Be careful with its contents.

For successful verification, DKIM technology must be supported by both parties — the recipient and the sender. Otherwise, the check may show an untrusted signature message in the email from an “honest” sender.

If you are completely confident about the sender and still see the untrusted digital signature message, ignore this alert. You can also contact support at the sender's mail service to prevent the alert from causing false alarms in the future.

Yandex.Mail log stores the history of changes made in your mailbox, as well as IP addresses from which authorization was made.

Actions that have no visual implications (e.g., reading previously read mail, visiting a folder, etc.) are not displayed in the log.

You may view the data for the last 7 days (about 2,000 actions).

To view your session history, click Yandex.Mail log at the bottom of the page.

You can also view the session log from the Settings  → Security menu.

The log shows your current IP address and other IP addresses under which you recently logged into this mailbox. All of the log's historical data is grouped by dates.

To view detailed information for any day from the list, click the link with the date. The list displays the time of the action, the IP address of the device from which the change was made, and the name of the action.

If you are using an unsecure HTTP connection and unreliable communication channels (such as public wifi) for internet access, information from your mailbox (personal correspondence, passwords, phone, and credit card numbers, etc.) may be intercepted by malicious users.

Yandex.Mail uses the HTTPS protocol to protect your mailbox. It provides security and confidentiality by encrypting your personal data before sending it to the server. The HTTPS protocol is supported by all modern browsers.

To reduce the risk of data loss, use only reliable communication channels for internet access that provide a secure HTTPS connection. If your internet provider does not support this protocol for some reason, switch to a more reliable ISP.

If you find that the secure HTTPS connection is disabled when you are using a corporate network, contact your system administrator to find out why and resolve the issue.