Comment by layer8

4 months ago

The spoofed addresses were support@company.com, is my understanding.

Zendesk is very well aware of SPF/DMARC, from their support pages.

1 comment

layer8

The spoofed address was appleid@id.apple.com . support+id@company.com was the to address, not the from address.