Replies: 0
Users on our domain reported inappropriate email coming from an account connected to a WP Mail SMTP plugin on our website. Our logs are showing no login attempts for the account, but mail being sent as recently as today, 1/16.
The original emails seem to indicate they were sent from the WP Mail SMTP plugin and maybe through the gmail client id and secret key we have setup. Any advice on how to proceed with the investigation would be helpful.