Hello,
I understand your concern, but to be honest, it doesn't have to mean that our site has been breached. If this happens to only one person in soon 9 years I don't see it as evidence that someone has breached our database. There are multiple other factors that could make you receive a spam email without using the email on any site. You might not be aware of this but there are spammers sending spam emails to any possible email combination out there, and if your email is a gmail or hotmail or any other generic email service you are likely to receive spam, specially if the prefix is an existing word, no matter what you do. For example
flower@hotmail.xom or
crazyguy@gmail.xom etc will easily receive spam emails without signing up anywhere. Once the spammers have hacked a server that they can send spam from they easily send out hundreds of thousands of spam emails in a day, and most of them go to nobody...
I know this partly because I work with internet security and other related issues on a daily basis and have both experience and interest to study these things, and I have personally experienced creating an unique email that I never sent an email from nor signed up anywhere with that I after a certain time started receiving spam to.
It is also possible that your own computer has been compromised of course, there are plenty of trojan-like malware out there that snatch your email addresses from your own hdd and send them to hackers/spammers. Hopefully this is not the case!
That said, I will of course look into this and create a few honeypot emails etc to see if I see any odd behaviour. And make a revision of the security to make sure there are no holes.
I have contacted you in a private message for more details.
If anyone else has experienced anything similar please let us know!!!
