Recently, I've been receiving "failure to deliver" emails that contain phishing messages, even though I haven't sent any such emails myself. My first step was to change my Google account password, but the emails keep coming. They've persisted despite my actions, and I'm concerned. I've had this Google account for a long time, so I want to know what steps I should take to address this issue.
5 Answers
It sounds like those delivery failure messages are just phishing attempts. Your email hasn't been cloned; scammers are likely just spoofing your email address to make it look like you sent them. It's a tactic to trick you into thinking something's wrong. You really don’t have to worry about it too much.
You’re probably seeing fake bounce-back emails. People can send emails with any address they want in the 'From' field, including yours. This doesn't mean your account is compromised. Email security measures like DKIM, DMARC, and SPF are in place to help filter these out, so the emails you receive are often just 'non-delivery reports'. You can’t stop them from spoofing your address, but major email providers usually take care of the spam.
If you want, share one of those delivery failure emails (just remove any personal info). This is likely NDR spam, where they use your email in the 'reply-to' field and send out loads of spam, resulting in those bounce-back messages.
I’ve experienced similar issues before. No one’s cloned our accounts; they’re simply using our emails to spoof messages. Check the email addresses of these sender notifications too, as they might be deceptively formatted. Just mark them as spam and move on.
Absolutely, nobody's hacking your account. It's common for spammers to spoof legitimate email addresses. Just keep your security tight, such as enabling two-factor authentication, but you should be fine.
Related Questions
How to Build a Custom GPT Journalist That Posts Directly to WordPress
Cloudflare Origin SSL Certificate Setup Guide
How To Effectively Monetize A Site With Ads