Advice and answers from the Advanced Web Ranking Team
Search for articles
DNS MX Record Modification and Unauthorised Email Redirection
On April 22, 2026, a DNS MX record on caphyon.com was temporarily modified by an unauthorised party. No customer data was accessed. Full disclosure inside.
TL;DR: No customer data or Advanced Web Ranking source code was accessed or exfiltrated. Our cloud infrastructure was not compromised. Email routing has been fully restored and additional security controls have been implemented.
On April 22nd, Caphyon SRL identified that an unauthorised party had modified a DNS Mail Exchange (MX) record associated with our domain, caphyon.com. As a result, a limited number of emails were redirected to an external destination between April 22, 2026, 09:02 (UTC+03:00) and April 22, 2026, 15:12 (UTC+03:00).
No unauthorized access was detected for product-specific domains or email addresses. Our support inbox, help@advancedwebranking.com or any other @advancedwebranking.com address that you used in previous communications were not affected during this incident.
During the same period, the attacker attempted to gain unauthorised access to our cloud infrastructure using the redirected emails - those attempts were unsuccessful and no systems were breached.
If you sent us any sensitive information via email (to any @caphyon.com inbox) between April 22, 2026, 09:02 (UTC+03:00) and April 22, 2026, 15:12 (UTC+03:00), we recommend treating that message as potentially seen by an unauthorized third party and contact us directly at help@advancedwebranking.com so we can assist you.
This advisory is published in the interest of full transparency and will be updated accordingly. We believe open disclosure is essential to maintaining the trust of our clients, partners, and the broader community.
If you have any questions, please do not hesitate to reach out to us at help@advancedwebranking.com.
stay in the loop