FML, I Didn’t Send That! What to Do If Spam Gets Sent from Your Account
Written by Ashley Rodriguez
2 minute read time
- Your holiday party getting crashed by really bad guys
- Your account getting compromised by a malicious spammer
What to Do If You’ve Been CompromisedThe first thing that you need to do is cut access to these spammers. As an admin, you’ll need to reset your account API keys and SMTP credentials for any domain that seems to have issues. The faster you do this, the better off you’ll be. Now that you have new keys and credentials, it’s time to check how much damage was done. Just like after the holidays, once the chaos is over, you’ll have some cleaning up to do. Unfortunately, because the hackers sent out spam messages that were authenticated with your actual domains/dedicated IPs, you may face negative consequences. The most commonly seen issue is your IP becoming blacklisted. This can happen on the day the unauthorized send happened or a few days later. On the days that follow, you’ll receive a lot of spam complaints, so be prepared. If you find yourself on a blacklist, here’s what you need to do to get delisted. As you know, not all blacklists are created equal and the majority won’t impact the delivery of your emails, so it’s best to quickly resolve the listings that matter before focusing on the less utilized blacklists.
How to Prevent Future LeaksThere are a number of things that could have contributed to your credentials becoming compromised. For some general advice on running your infrastructure in a secure configuration, you can read this comprehensive security guide we put together. As mentioned above, when hackers send spam with your credentials, it’s usually because your sensitive information got leaked in a public script. You’ll need to make sure only the right people can read your API keys. Luckily, with Mailgun, you can restrict access to your API keys and SMTP credentials by assigning specific roles to your users. The last thing you want is a well-intentioned non-dev sharing the keys without knowing what purpose they serve. We also recommend making sure all your administrators have two-factor authentication configured. 2FA can be a serious pain in the ass, but it’s worth it. If your account got compromised and you need some additional help, contact our support team. We’re working around the clock, including holidays, to answer your questions. And if you want additional peace of mind, Mailgun’s Managed Service might be a great fit for your email program. We partner you up with one of our experts who will proactively monitor your account and advise on best practices. Click here to learn more.
Modified on: January 22, 2019