Hacked Email

User email account was compromised due to suspicious login activity. Forwarding rules and potential inbox rules were detected and may have been used to redirect emails. Signed out of all sessions via Microsoft account security portal. Password reset performed with a strong new password. Reviewed and deleted any suspicious Inbox Rules and Forwarding settings in Outlook. Ran full malware scan using Webroot Endpoint Protection. Reviewed recent activity. Sent notification to all team members and relevant contacts using Outlook Mail Merge, informing them of the compromise and advising caution.