We use Sengrid as our email service provider. Here are a few reasons we chose Sendgrid:
- Reliability. Sendgrid sent almost 900 billion emails last year.
- Developer friendly. Sendgrid has great documentation, support, and APIs.
- Client list. Sendgrid is used by companies such as Hubspot, Spotify, eBay, and 80,000 more businesses.
- Brand name and accountability. Twilio, a publicly-traded company owns Sengrid.
Unfortunately, all of these positives also make Sengrid attractive (and easy you use) for malicious phishers. Any user can create a Sengrid account and start sending emails in bulk with a simple API call. Any account using the default Sengrid setup will send emails from Sendgrid's shared IP addresses.
Steps we take to protect sending from your domain:
- Gratavid used dedicated IP addresses. No other Sengrid account or user can send emails from our dedicated IP addresses. Therefore, if you whitelisted our dedicated IP addresses, you would not be whitelisting IP addresses for any other Sengrid user; anyone using Sendgrid to phish your employees would not pass your whitelist settings. A malicious user would need to gain access to our Sendgrid account to send phishing emails from our dedicated IP addresses.
- Two-factor authentication is required for Gratavid's cloud service providers including Sendgrid. Sengrid's two-factor authentication to access our account.
- Gratavid automatically throttles all emails sent through our system.
- We offer the option to disabled bulk sending for users.