Multiple email addresses for my domain have been compromised.
My client forwarded me an old email which he sent me few days ago but I haven't received that email. That email was sent to an email address just like mine but with an O replaced by a zero. So I found out that another domain has been registered just like my domain name.
My client sent an email at the correct address (ceo@rustamtowel.com) but i didn't received that email but scammer (ceo@rustamt0wel.com) received and replied it. Client doesn't know that it was the wrong person and scammer quote him wrong price and client booked an order on that price. How can scammer receive that email from my client which i haven't received?
How can I check that who is involved and be safe for future. Who can be responsible?
- My domain registration guy (my domain is using Nameservers for the hosting and no extra setting i believe)
- My Web Hosting Company
- Someone from My Own Office
Thanks in advance