I am getting spam emails from my own domain

[b0chard]

Hi, I'm not sure if this is a security risk. The domain I bought was an old used domain, and I found that the recipient address in my domain which I'm getting the spam emails is breached upon checking on haveibeenpwned. I am getting those spam emails because catch-all is enabled. Although, I don't mind those emails, I actually like reading some of them.

A while ago, I got this spam email which is coming from my own domain. I don't know how it be possible for someone to send an email to me from my own domain, even though I only have one email created in Plesk.

 

Is this a kind of email spoofing, and how did they do it? should I be worried about the security of my emails?

Thank youu!!

[b0chard]

I should have posted this in Questions subforum. srorry.

[MoneyBroz]

Do you have DKIM or SPF setup for your domain?

[MoneyBroz]

2 hours ago, b0chard said:

Is this a kind of email spoofing

Yes it is

[b0chard]

1 hour ago, MoneyBroz said:

Do you have DKIM or SPF setup for your domain?

I don't have, can you add for me?

 

[b0chard]

below is the DKIM DNS record I saw in Plesk.

for the name:

_domainkey.bochard.net. IN TXT "o=-"

and for the value:

default._domainkey.bochard.net. IN TXT "v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+SDLc/Hl5PNixlC3Z1QqVI5F0WQUTC0wA2GHBtcHm+cqyRxqCWP7OmmV5Z7Vn3nos10c8TB7chpdkPiTVeO53mrpK6ZC9fjhlfFajdLReXJvRhqR+MBCwUEw1IimwFUz35YIRwqJ2bHaqvtjhuH4oOZ45qq79GB9gsc5OGC/A74pvZBOzMt1zYo3BvwUNo2LTgcyMDTunY+ZU15PBFyE34tj8iniPctiznyx+MboWzR4FCG/igoSwuksUm591bW8PblllmtUzdIQi7ORn9P+JO+bCW29gJlJ77wxupzvelwUMbi/iNWrCnyVbJVNxHxGQTu4jzvMg74BfIGZ1YErmQIDAQAB;"