It’s:
Subject: Sucuri Alert, websitename.com, Success Login, 12.13.14.15
and the iTSec plugin does not send these specific emails.
It’s the Sucuri Security – Auditing, Malware Scanner and Hardening plugin that sends such emails.
You should mark this topic as resolved and post your question here.
To prevent any confusion, I’m not iThemes.
The Sucuri Security plugin isn’t even installed on the website that sent this email. I searched the site and there ARE references to Sucuri in the iThemes Security plugin files. As I mentioned in my initial post, there is a reference to Sucuri in the iThemes Settings in the right sidebar. The module references a Malware Scan and states “This malware scan is powered by Sucuri SiteCheck.”
There are no other references to Sucuri anywhere on the site’s backend.
I am going to leave this open until someone from iThemes responds.
Thank you for your input, though.
@nlpro is correct. That email is not sent by iThemes Security and is sent by the Sucuri Security plugin. All iThemes Security emails mention in the email that they are sent by iThemes.
If you look at the headers of the email you may be able to determine where the email was sent from. Has that plugin ever been installed on the site? Sometimes an old staging/development site, or even a version of the live site on an old host is left around for a bit. And the email could be sent that way.
Regardless, posting in the Sucuri Security plugin’s support forums as @nlpro advised would be the best next move.
I’m baffled. This is a brand new site – just launched last week. Sucuri has never been installed on this site. Why does iThemes reference Sucuri in it’s settings page if it isn’t used?
I will seek help elsewhere, as suggested.
Thanks!
Sucuri offers many different services. We use their malware scanner, but their malware scanner does not send that email.
If that is a completely fresh site, it is possible that email is a phishing attempt. But Sucuri would know more about what to look for.
