There are campaigns or spam appearing in your Inbox Monitor account that you did not send.
- You intentionally or inadvertently shared your seed list with another sender, such as an agency you work with, another team within your organization, or someone with your email service provider, who is now mailing to it.
- A sender gained access to or identified one or more of your reference seeds and sent email to it. This can occur in the instance of a dictionary attack.
To address the problem:
- Determine if the sending IP addresses or sending domain belong to you by viewing the campaign headers:
- Navigate to the Campaign Details page of the campaign and find your sending domain in the summary box.
- Select the Sending IPs tab.
- Archive the spam campaign in Inbox Preview:
- Select the subject line of the message you want to archive.
- Select Archive on the upper right of the screen.
- Verify the security of your sending infrastructure and list databases. Check for data breaches that may have compromised the security of your mailing list.
- Review the historical data in Inbox Monitor. Check to see if Inbox Monitor received data from the IP addresses or domains prior to receipt of the spam.
- Ask your Account Manager to implement domain allowlisting for your company.
This solution is best if you see repeated occurrences of unauthorized campaigns.