<div>
It appears no more of the emails have been sent since the password change.
</div>


It appears no more of the emails have been sent since the password change.

<div>
Still would like to know what caused this, I cant be sure it wont happen again until I know
</div>


Still would like to know what caused this, I cant be sure it wont happen again until I know

<div>
Thanks guys, I am certain it was hacked credentials and am implementing a more secure password policy.
</div>


Thanks guys, I am certain it was hacked credentials and am implementing a more secure password policy.

<div>
@CoSmismgr &nbsp;- Thanks for the update and I was happy to help.
</div>


@CoSmismgr  - Thanks for the update and I was happy to help.

<div>
<div class="content wysiwyg-content">
One of my users started receiving hundreds of emails with failed delivery reports of an email he never sent himself - it contains a zip file attachment, and inside the zip file is an executable, definitely bogus.<br />
<br />
How do I make sure this is terminated? He changed his password immediately. It is odd that nothing shows up in his sent items folder either. I'm not sure how these types of email account hijacking viruses work, so am hoping for someone more knowledgeable to pipe in!<br />
<br />
He is starting to receive all sorts of emails back from people notifying him of the spam email. I checked mail flow on my exchange server and can see all of the sent emails. How do I put a stop to this??
</div>
</div>


One of my users started receiving hundreds of emails with failed delivery reports of an email he never sent himself - it contains a zip file attachment, and inside the zip file is an executable, definitely bogus.

How do I make sure this is terminated? He changed his password immediately. It is odd that nothing shows up in his sent items folder either. I'm not sure how these types of email account hijacking viruses work, so am hoping for someone more knowledgeable to pipe in!

He is starting to receive all sorts of emails back from people notifying him of the spam email. I checked mail flow on my exchange server and can see all of the sent emails. How do I put a stop to this??

Emergency - email virus issue

Within Internet message handling services (MHS), a message transfer agent or mail transfer agent (MTA) or mail relay is software that transfers electronic mail messages from one computer to another using a client–server application architecture. A MTA implements both the client (sending) and server (receiving) portions of the Simple Mail Transfer Protocol (SMTP). The terms mail server, mail exchanger, and MX host may also refer to a computer performing the MTA function. The Domain Name System (DNS) associates a mail server to a domain with mail exchanger (MX) resource records containing the domain name of a host providing MTA services.

Email Servers

Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.

Exchange

Anti-virus software was originally developed to detect and remove computer viruses. However, with the proliferation of other kinds of malware, antivirus software started to provide protection from other computer threats. In particular, modern antivirus software can protect from malicious browser helper objects (BHOs), browser hijackers, ransomware, keyloggers, backdoors, rootkits, trojan horses, worms, malicious layered service providers (LSPs), dialers, fraud tools, adware and spyware. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity theft (privacy), online banking attacks, social engineering techniques, Advanced Persistent Threat (APT), botnets and DDoS attacks.