SendGrid Compromised?
I just received a 2FA authentication text message from SendGrid. At first, I though it's just SMS spam but then decided to quickly login to my SendGrid account and surprisingly enough I get exactly the same 2FA code from the same number. So someone must have had my password. This is a randomly generated password and the only way to have it, is to have access to all my vault (which would suggest other account access attempts).
I am leaning toward the possibility that SendGrid passwords have been compromised?
Does Sendgrid use SMS as part of the password reset process? That would be a much more likely explanation.
I wouldn't jump immediately to SendGrid being compromised, it's most likely you.