Exchange 2010 User Mailbox Seems to be compromised
I have a single user out of 100s that is getting tons of undelivered messages from our local Exchange Server. When examining the messages it indicates there were 100 intended recipients with the majority being delivered. Many foreign domains are listed. We have scanned the users desktop and the Exchange server for viruses, but both come up clean. There is a possibility her send address is being spoofed....
I am not confident the proper logging is running to help find the issue.
Need help in investigating and resolving the issue. (I am not an Exchange experts)