Our New Compromised Email Policy
This blog acts as notice to all XMission email customers, both residential and business, that our policy has recently been updated to include compromised email accounts.
Policy Language:
The Compromised Mail Account policy addition is found on the XMission Policy page: https://xmission.com/legal_policies#compro
Due to serious problems stemming from compromised mailboxes, XMission will handle the first compromise on any unique customer mailbox at no cost. At the time of the compromise the mailbox owner, or mail domain administrator, will be informed of the consequences of another compromise of the same mailbox within the next 24 months, including a nominal $25 Email Compromise Cleanup Fee per instance. The damage and considerable labor required to remedy these compromises is substantially more significant to XMission. The nominal fee is simply intended to incentivize responsible data protection practices by mailbox holders. Additionally, any mailbox suffering more than 3 compromises in a lifetime will be either permanently suspended or required to utilize a very secure 30+ character password.
Overview:
Compromised mailboxes resulting in unwanted (spam) email message runs are impactful in that they can and do affect mail delivery for all customers and require substantial resources to resolve.
Details:
XMission staff spend a minimum of 30 minutes dealing with each and every mailbox compromise. This includes cleaning up the outbound mail server message queues, researching the extent of the compromise, discovering and getting servers and domains removed from blocklists, and contacting customers to change their password or repair their compromised machine.
XMission’s mail server reputation is damaged every time which means all customer email delivery can be hindered, including yours!
Standard practice is to the suspend the mail account, require a password change, and request the customer verify their machine or device is not infected with malware or a rootkit. Often this is sufficient and we never have a repeat from the same mailbox again.
Then there are the repeat offenders who are consistently compromised. These are customers who may not understand how to clean up after a malware compromise, who do not take personal or business data security seriously, or who are simply “too busy” to address the issue.
In some business cases they may have a mail domain administrator who is lax and resets the previously compromised password. All of these spell disaster for email server and the domain reputation. It is not safe, it is resource costly, and it requires immediate attention.
In order to require secure email practices and adequately educate customers on the consequences tied to email compromises XMission has implemented a $25 Compromised Email Cleanup fee as quoted and linked in the policy above.
We encourage all customers to read and understand the policy. Should you have any questions please direct them to support@xmission.com or post a comment below.
Additional XMission posts around email security:
Best Practices for Email Security
Your attention to this important issue is greatly appreciated.
John Webster, XMission Email Product Manager and Zimbra evangelist, has worked at XMission for over 23 years doing his favorite thing: helping companies securely communicate with customers through technology to grow their business. When he’s not uncovering Zimbra’s secrets you might find him in our beautiful Utah mountains. Connect with him on LinkedIn today!
Connect with Local Cyber Security Experts at BSidesSLC 2019 Zimbra License: Maximize your Official Zimbra Support Experience
Comments are currently closed.