How to know if your email or website is being hacked or spammed?

David Beroff

Well-known member
Registered
Joined
Jun 14, 2016
Messages
1,477
Points
63
As title asked. How can I know if my email or website is being hacked or spammed? sometimes I got emails from my hosting provider said that, my email is sending spams while I didn't do that. Which tools or ways to help us know about that?
 

tuxandrew

Well-known member
Registered
Joined
Aug 19, 2012
Messages
126
Points
18
Usually this happens either on a email account password compromise or else it might be a spoofed email.

First of all you may ask a detailed header of the spam or spoofed email to your provider for detailed investigation of the origin of the spam.

If it is a spamming case you can request for a server logs also, for email spoofing there are less chances of trace of logs written in the server.

In the case of password compromise,

- Immediately reset the email password to a stronger one.
- As an additional security measure for prevention, reset control panel and FTP password of your account to stronger ones.
- Always try to login to your email account and FTP accounts from a malware free computer of device. Always ensure your local device is not infected with malware. Scan the devices using any advanced malware/virus scanning software.
- Dont update your email account credentials in any public forums to avoid further issue.

In the case email spoofing

- Enable a valid SPF and DKIM authentication for your domain to avoid spoofing.

Also you can implement any spam filter software's to filters emails or you may purchase email spam filtering services from mailchannels, mailchip etc.

Spamassasin is one of the free softwares.
 

David Beroff

Well-known member
Registered
Joined
Jun 14, 2016
Messages
1,477
Points
63
David Beroff
- Enable a valid SPF and DKIM authentication for your domain to avoid spoofing.
What is spoofing? can I enable SPF and DKIM for all websites once? or have to configure on single one?
 

tuxandrew

Well-known member
Registered
Joined
Aug 19, 2012
Messages
126
Points
18
tuxandrew
Email spoofing is act of forgery of email header, the 'from:' email address in the email header will be modified before sending and the email appears to be received from a trusted or familiar source/email address to the recipient.

DKIM and SPF records can be added on domain basis.
These authentication methods can be added as TXT records in the DNS of the domain, in order to prevent any further spoofing from the email addresses created under the domain.
 

KaVa2011

Member
Registered
Joined
May 19, 2020
Messages
23
Points
1
Your hosting provider should take immediate action by the time they know that you're not the one doing that action. They should know on how to stop that issue. As a user, you should immediately change your email password.
 

David Beroff

Well-known member
Registered
Joined
Jun 14, 2016
Messages
1,477
Points
63
David Beroff
What I am concerning is, why they knew there are spams on my server while I didn't get any notices on my cpanel or hosting control panel? or they are just got that via reports from someone?
 

tuxandrew

Well-known member
Registered
Joined
Aug 19, 2012
Messages
126
Points
18
tuxandrew
Usually SPAMs will be caught in RBLs or by third party ISPs and they black list the originating source IP and reports to the concerned provider of the IP.

The recipients may also reports the incidents if they receive such emails directly to their Inbox.

To do an investigation and identify the origin, a full spam header is required from the recipient side.
 

fiz

Well-known member
Hosting Provider
Registered
Joined
Aug 6, 2020
Messages
116
Points
16
As title asked. How can I know if my email or website is being hacked or spammed? sometimes I got emails from my hosting provider said that, my email is sending spams while I didn't do that. Which tools or ways to help us know about that?
Normally, Your web hosts point out the issue before even you ask How or Why? But normally the giants hosting companies just suspends your account and notify you to resolve the issue on your own. You probably have malware on your website which keeps sending out emails. It is very normal these days because host providers are not taking very good measure against these malware, for instance, there is AnonymousFox which even create a new email account in cPanel using your WordPress site and use it for spamming. The best way to keep yourself away from this trouble is to get Managed Hosting or regular Maintenance. If you are looking for someone to clean it up or help you out with the situation, don't hesitate to reach me out.
 
Recommended Threads

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top