Here are some Slack security tips that will help keep your communications private. Among the methods Slack uses are:
Encrypting data at rest (e.g., stored databases) and in transit (i.e., messages you send through the service)Identity management tools to allow and ensure user control over who can access a workspaceSupport for single sign-on to minimize exposure of passwordsDomain-claiming to provide control over who can find and use workspaces, along with restricting users to specific email address domains
You may also consider using a password management system. These services will create unique and complex credentials and save them securely so that you don’t have to remember them. If you’re a Workspace Owner or administrator for your Slack channel, you can require other users to turn on 2FA from your channel’s Administration page. Regular users can set it up through their account page by selecting Account Settings from their profile in Slack. The same rules apply as when you receive a suspicious email: Don’t click a link or download a file unless you know exactly what it is and who is sending it.
