Hi Pamela,
Is there anything suspicious in the Todo app? The drafts might come from there if you have access to your account.
https://to-do.office.com/tasks/
Delete everything and let me know if it works.
I am getting "You have been hacked" draft messages every minute or so in my email. Help
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 37%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Pamela May
0
Reputation points
Something is creating "You have been hacked" emails in drafts every minute or so. I have changed my password, updated to MFA. Cleared rules, etc. Forced logouts but it is still happening. What do i do next.
Outlook | Outlook for mobile | Outlook for iOS | For home
2 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 72%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Sumit D - IA 161K Reputation points Independent Advisor2026-02-16T12:41:10.1666667+00:00 -
Q&A Assist2026-02-16T12:08:26.01+00:00 AI generated content. This question contains an answer created with AI from Q&A Assist. Learn moreIt sounds like your email account has been compromised, and the hacker may still have access to it despite your efforts to secure it. Here are some steps you can take to regain control and stop the draft messages:
- Thorough Cleanup: Sign in to Outlook Web and check your settings. Go to Settings → Mail → Rules and delete any suspicious rules. Also, check Mail → Forwarding for any unknown forwarding addresses and remove them.
- Sign Out Everywhere: Use the Microsoft Account Security feature to sign out of all active sessions. This can help disconnect any unauthorized access.
- Manage App Permissions: Review the apps that have permissions to your account and revoke access to any that you do not recognize.
- Check for Hidden Rules: If you have Microsoft 365 admin access, review the Exchange Admin Center under Mail Flow → Rules. You can also run PowerShell commands like
Get-InboxRule -Mailbox youraddress@example.comto find and remove hidden rules. - Reset Password Again: After performing the above steps, reset your password again and ensure that Multi-Factor Authentication (MFA) is enabled.
- Monitor Sign-in Logs: Keep an eye on your sign-in logs for any suspicious activity. This can help you identify any further unauthorized access.
- Scan Devices: Run a full antivirus scan on all devices you used to access your email account to ensure they are not compromised.
- Factory Reset Devices: If you suspect that a device may be compromised, consider performing a factory reset on that device.
- Inform Contacts: If you regain access, inform your contacts about the potential compromise to prevent them from falling victim to phishing attempts.
By following these steps, you should be able to regain control of your account and stop the unwanted draft messages from being created.
References:
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 38%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKW%3C/text%3E%3C/svg%3E)
kieran warde 0 Reputation points2026-02-19T03:34:32.0066667+00:00 I am having the same issue as OP i have done all the same checks and security measures and in my todo i have two (emails/drafts) in the flagged emails section but no matter what i do it will no go
Sign in to comment