Hey all, I think I have a bit of an issue it seems as though a few of my users because subject to a phishing attack that was asking for their usernames and passwords. How can I go about figuring out who is actually sending the mail out? I have checked the ISOQLog but that does not really throw any flags to me. Any thoughts on this?
Thanks Q
