Hi, I'm not sure if this is a security risk. The domain I bought was an old used domain, and I found that the recipient address in my domain which I'm getting the spam emails is breached upon checking on haveibeenpwned. I am getting those spam emails because catch-all is enabled. Although, I don't mind those emails, I actually like reading some of them.
A while ago, I got this spam email which is coming from my own domain. I don't know how it be possible for someone to send an email to me from my own domain, even though I only have one email created in Plesk.
Is this a kind of email spoofing, and how did they do it? should I be worried about the security of my emails?
Thank youu!!