Please note that this is an important security alert regarding serious hacking activity on CMS such as WORDPRESS, JOOMLA etc. installed sites especially on Wordpress sites. There is a serious attack on wordpress sites where a hacker uploads malicious files under the domain and those files are used to remove all contents present under that domain. This is very serious issue and we advice you to take the following immediate actions at your end;
Please note that the issue could be due to one or many among the following;
1. You might be running an outdate version or joomla,wordpress,drupal,whmcs etc 2. You migh not have updated to the latest security release of latest stable version or joomla,wordpress,drupal,whmcs etc 3. There could be files with permission levels other than 644 4. There could be folders with permission levels other than 755 5. You could be using a VULNERABLE THEMES or TEMPLATES or PLUGINS in wordpress,joomla,whmcs,drupal etc 6. Your wordpress or joomla admin login details are simple or compromised 7. Your cpanel login details are simple or weak.
Please do the folllowing immediately,
1. Upgrade your open source cms such as joomla,wordpress,whcms,drupal etc to lastest version 2. Remove unneccessary installations of joomla,wordpress,whmcs,drupal etc 3. Remove or upgrade vulenerable versions of plugins, themes, templates used in wordpress,joomla,whmcs,drupal etc 4. Check the file and folder permissions. See whether they are 644 for files and 755 for folders. If not, change them. 5. Reset your administartor password for joomla,wordpress,drupal,whmcs etc 6. Reset your cpanel and database login details. 7. Always use tough passwords like 3r48d*#R#T&3023r 8. Keep a backup of your domain in your local system for safety purpose
Kindly note that Unless this step is taken it might affect your entire reseller account.
whenever you send more than 3 email messages from the same IP address within 60 seconds and all messages have the same hash code (bulk mail).
check WHM > Email > View Relayers
tail the mail logs, its the best practice to know about email flows completely so you can become to knowwhich is the spam cause
WHM >> Tweak Settings >> Mail >> Prevent “nobody” from sending mail This will ensure that all mails going out will need authentication with a valid email id and password. This will apply to all web forms sending out email through websites.