Solved

Exchange mail Account hacked ?

Posted on 2015-02-03
4
17 Views
Last Modified: 2016-06-23
My Company is using Exchange 2010 as it mail servers.  It appears the mail server is now hacked as  hackers are using  one the company's  valid email account on the exchange to send malicious mail/ messages to  our client.
How do I stop this ?
0
Comment
Question by:zugulu
4 Comments
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 168 total points
ID: 40585979
Change the password for the account immediately and then restart the Transport Service.

Then empty out any queues of invalid messages and review the security of your server settings / password settings as they sound like you have weak passwords and they aren't changed often enough.

Alan
0
 
LVL 4

Assisted Solution

by:Praveen Kumar Bonala
Praveen Kumar Bonala earned 166 total points
ID: 40586045
Most probably there could be a misconfiguration in SMTP relay.
In a Small Business Server environment, you may have to prevent your Microsoft Exchange Server-based server from being used as an open relay SMTP server for unsolicited commercial e-mail messages, or spam. You may also have to clean up the Exchange server's SMTP queues to delete the unsolicited commercial e-mail messages. If your Exchange server is being used as an open SMTP relay.

Please check following link to configure SMTP Relay.
http://support.microsoft.com/kb/324958
0
 
LVL 19

Assisted Solution

by:Miguel Angel Perez Muñoz
Miguel Angel Perez Muñoz earned 166 total points
ID: 40586056
I suggest you force all users change his passwords and set a expiry policy.

To force all users (domain administrator too) you can run this from powershell:
import-module activedirectory
get-aduser -filter {objectclass -eq "user"} | set-aduser -ChangePasswordAtNextLogon $true
0

Featured Post

Do email signature updates give you a headache?

Do you feel like you are constantly making changes to email signatures? Are the images not formatting how you want them to? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today.

Join & Write a Comment

Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
Familiarize people with the process of utilizing SQL Server stored procedures from within Microsoft Access. Microsoft Access is a very powerful client/server development tool. One of the SQL Server objects that you can interact with from within Micr…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now