Solved

Exchange mail Account hacked ?

Posted on 2015-02-03
4
29 Views
Last Modified: 2016-06-23
My Company is using Exchange 2010 as it mail servers.  It appears the mail server is now hacked as  hackers are using  one the company's  valid email account on the exchange to send malicious mail/ messages to  our client.
How do I stop this ?
0
Comment
Question by:zugulu
4 Comments
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 168 total points
ID: 40585979
Change the password for the account immediately and then restart the Transport Service.

Then empty out any queues of invalid messages and review the security of your server settings / password settings as they sound like you have weak passwords and they aren't changed often enough.

Alan
0
 
LVL 4

Assisted Solution

by:Praveen Kumar Bonala
Praveen Kumar Bonala earned 166 total points
ID: 40586045
Most probably there could be a misconfiguration in SMTP relay.
In a Small Business Server environment, you may have to prevent your Microsoft Exchange Server-based server from being used as an open relay SMTP server for unsolicited commercial e-mail messages, or spam. You may also have to clean up the Exchange server's SMTP queues to delete the unsolicited commercial e-mail messages. If your Exchange server is being used as an open SMTP relay.

Please check following link to configure SMTP Relay.
http://support.microsoft.com/kb/324958
0
 
LVL 19

Assisted Solution

by:Miguel Angel Perez Muñoz
Miguel Angel Perez Muñoz earned 166 total points
ID: 40586056
I suggest you force all users change his passwords and set a expiry policy.

To force all users (domain administrator too) you can run this from powershell:
import-module activedirectory
get-aduser -filter {objectclass -eq "user"} | set-aduser -ChangePasswordAtNextLogon $true
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

680 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question