During routine monitoring of network traffic, you notice a very large spike in outbound traffic on port 25 from a device within your organization that has no history of sending emails. Despite this anomaly, email services appear to be functioning normally for all users. What is the MOST likely explanation for this behavior?
User sending bulk emails legitimately
Compromised system sending out spam
Regular email service misconfiguration
Scheduled backup over SMTP