If you suspect that your Mailjet account has been compromised due to unusual activity or unauthorized access, please follow the steps below to secure your account.
Once you’ve completed all the recommended actions, reach out to our Support team. We’ll verify your account’s security and assist you in reactivating access as quickly as possible.
Step 1: Investigate the Source of the Breach
To protect your account and the Mailjet platform, we ask that you review your systems for any possible security vulnerabilities or leaked credentials.
Please pay special attention to:
- Exposed or outdated WordPress installations
- Misconfigured PHP environments (such as Apache, Laravel, NodeJS, etc.)
If you discover any vulnerabilities or suspicious activity, please share your findings with us. Even if the issue originates outside of Mailjet, your input is invaluable in helping us strengthen the platform security and prevent future abuse.
Step 2: Reset Your API Secret Keys
Immediately regenerate all API secret keys to block any potential unauthorized access and secure your account.
🔗 Learn how to reset your API keys
Step 3: Change Your Mailjet Account Password
Choose a strong, unique password that you haven’t used on any other platform to ensure maximum account security.
🔗 Follow our password reset guide
Step 4: Enable Two-Factor Authentication (2FA)
Add an extra layer of security by enabling 2FA on your Mailjet account.
🔗 Enable 2FA with this step-by-step guide
Step 5: Notify Our Support Team
Once you’ve completed all the above steps, reach out to us. We’ll verify that everything is in place and re-enable your account so you can get back to work.
Step 6 (Recommended): Strengthen Your Account Security
Once your account is secured, we highly recommend taking additional steps to protect it in the long term. Proactively improving your security settings can help prevent future compromises.
🔗 Explore our security best practices guide
Additional Recommendation
We also recommend:
- Contacting your web hosting provider to investigate server-side security.
- Auditing any public code repositories for accidentally exposed credentials.
Taking these extra precautions helps ensure that the issue is fully contained and not affecting other parts of your infrastructure.
Need Help?
If you have any questions or concerns, don’t hesitate to submit a support request. Our team is here to help you stay secure and get back on track.