Yesterday I received an email about my website. It said to contact: firstname.lastname@example.org
This is how it started:
We take security seriously so all customers can build and manage their websites in a safe environment.
We’re writing to let you know that we recently completed a routine security checkup of all our servers and platforms. Our scans flagged your leaveabreadcrumb.com hosting account as containing known malware. Due to the negative impact to our systems, we've removed the following malware from your files:
Is this a ligit email?
Frances Copeland Lucas
Yes this is a valid email. I see your website http://leaveabreadcrumb.com/readme.html is currently out of date. If you visit the url I pasted above^ you will see you are currently running wordpress 3.7 instead of the current version 4.7. I recommend reviewing this article for keeping your wordpress site secure.
You may also want to consider
SSL & Sitelock which are security measures in conjunction with processing the updates on your wordpress dashboard.
The good news is that we have notified you in time and you are not yet on any blacklists.
Contact our hosting support department by calling the number in the email to discuss further how to secure your site and if you do not currently have someone to process the updates we are now also offering update services located here.