When your email account is compromised, it means someone has hacked into it. They will be able to read your messages and send mail from your account. Spoofing is when a spammer sends out emails using your email address in the From field. The idea is to make it seem like the message is from you, in order to trick people into opening it. Your Sent folder will offer the best clue as to whether your account has been compromised or spoofed.
Changing your password can help secure your account from being compromised in the future, and we recommend doing it regularly. For instructions on changing it, you can visit Changing your email password
If you have used the same password for any other online accounts (not recommended!) ensure that you change them as well. The NCSC (National Cyber Security Centre) provide the following guidance.
Hackers often apply these as a method to keep on receiving your email without needing access to login to your account. Verify all E-mail filter rules. If there are any you did not create, delete them.
If you did not create them ensure you reset the auto forward option.
Verify Devices that are currently signed into your account. If there's any you don't recognise them, then hit the Sign out from all clients button.
Spoofing is when a spammer sends out emails using your email address in the From field. The idea is to make it seem like the message is from you – in order to trick people into opening it. These emails do not originate from our email service and do not have any contact with the TalkTalk Mail system. The email addresses are cleverly edited to make them appear as though they're from us. The message actually originates from the spammer's email account and is sent from their email server.
Look for any irregular activity including these telltale signs;
It's not possible to stop email spoofing from happening, but there are things you can do to minimise your chances of it happening to you:
You can change any of the passwords for your email addresses that are stored in My Account.
If you're unable to reset your password because you don't have recovery details or they are no longer correct you'll need to contact us to update these.
As a final pre-caution we would also recommend resetting any account linked to your email account. This will prevent hackers who may have already performed a password reset from being allowed to continue to access your other online accounts.
Let us know if you're still looking for help with your query.
We appreciate your feedback, why not take a moment to review our service by
completing a Trustpilot survey.
You can chat with us seven days a week. Alternatively, check out Contacting TalkTalk for other ways to talk to us.
We have a reduced support team available at the moment, which means the wait times to speak to us may be longer than usual. Why not manage your account or get help with your services online using one of the below options