Email is as important as the website when it comes to security. As a channel for social engineering, malware delivery, and resource exploitation, a combination of best practices and user education should be enacted to reduce the risk of email-related compromise.