: Check /usr/local/cpanel/logs/access_log for unusual login patterns or IP addresses.
: Ensure unauthorized TXT records (like SPF or DKIM) have not been added to facilitate spamming or domain spoofing. x4220 Cpanel WebMail Panels [Valid].txt
: If supported by your hosting provider, enable external authentication or two-factor authentication to add a layer of security beyond passwords. x4220 Cpanel WebMail Panels [Valid].txt
: Immediately change passwords for all cPanel accounts. Use the Password & Security interface to enforce strong, unique passwords. x4220 Cpanel WebMail Panels [Valid].txt