The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Email Account Compromised

Discussion in 'E-mail Discussions' started by bobtimms, Oct 27, 2014.

  1. bobtimms

    bobtimms Registered

    Joined:
    Oct 27, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I have a vps on which one of the accounts cPanel username/password was apparently hacked and spam emails were attempted - fortunately damage has been limited (I think) because the domain was limited to 1 email per hour. There has been no actual login to the domains cPanel - only email usage. After discovery I immediately changed the cPanel users password but that has not stopped attempted spam emails that are only going out at 1 per hour (pretty incredible you cant stop them completely). Because this is a non standard email user I cant simply delete an email address. I have tried most of the suggestions posted on this board for hacked email without success. My thinking is that the only thorough solution is to rebuild the domain (yuk) with another username - any thoughts or comments would be appreciated.
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,678
    Likes Received:
    653
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    Have you reviewed the email queue to see if the messages that are going out are simply from the queue? If so, you can search for and delete those messages to prevent the SPAM going sending out.

    Thank you.
     
  3. bobtimms

    bobtimms Registered

    Joined:
    Oct 27, 2014
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Actually I have been watching the queue and deleting like crazy. Fortunately I found the script yesterday and deleted it so all has been quiet since. I do wish there was some mechanism to shut down email completely from a domain - because even at 1 mail per hour there were probably 1-2 days (24 - 48 emails) of spam that got delivered.

    Thanks
     
  4. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,146
    Likes Received:
    34
    Trophy Points:
    48
    Location:
    India
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page