Phishing in the Cloud: SendGrid Campaign Exploits Account Security

A new phishing campaign exploits SendGrid’s reputation to deliver emails with spoofed sender addresses and malicious links. The emails, themed around suspicious login attempts, free promotions, and changed phone numbers, aim to trick users into revealing their credentials. The campaign uses open redirect links to disguise malicious traffic and redirects users to a phishing site mimicking the legitimate SendGrid website.