@PupWrafie Even a legitimate sender's email is not enough. Wasn't all that long ago that someone managed to send out emails *from* company addresses via a third-party vulnerability. Scammers will always find a way. It's up to the company to take all reasonable steps to alert customers. @unaegeli @signalapp