Is use DMARC and SPF to protect my domain, however a client recently became infected with malware and propogated the malware via spoofed email. Now clients of mine are receiving mail addressed as me. The question is how, what have I missed here.
Details
DMARC Record
v=DMARC1; p=none; rua=mailto:
helpdesk@mydomain,mailto:7ffa0582@mxtoolbox
.dmarc-rep
ort.com; ruf=mailto:
My.name@mydomain,mailto:7ffa0582@forensics
.dmarc-rep
ort.com; fo=1
SPF
v=spf1 +a +mx +ip4:M111.111.111.111 ~all
where
- IP is my public IP address
- MX is my cload spam filter provider.
~all is a softfail,Allow mail whether or not it matches the parameters in the record
-all is a hard fail