Did Monday.com's SendGrid service get compromised?

Question

Just got a fake internal email from monday.com as a customer. It passed DKIM, SPF, DMARC, Composite Auth and the Sender IP from Sendgrid looks legit under hostname o9.email.monday.comI won't mention the body text and the subject, but the email itself looks fine with actual monday.com links but only the call-to-action is a short URL so leading me to conclude that it is fake.Anyone getting suspicious emails from them?

moooo99 · Accepted Answer

I haven&rsquo;t received any suspicious looking emails from them.Short URLs aren&rsquo;t necessarily suspicious and are often used to track clicks on a CTA.Is it the mere presence of the short link that is raising suspicions for you or do the actual redirects seem suspicious as well?

KomoD · Answer

> I won't mention the body text and the subjectWhy?

Did Monday.com's SendGrid service get compromised?

I haven’t received any suspicious looking emails from them.
Short URLs aren’t necessarily suspicious and are often used to track clicks on a CTA.
Is it the mere presence of the short link that is raising suspicions for you or do the actual redirects seem suspicious as well?

> I won't mention the body text and the subject
Why?