arrow_back
Back to Articles
Inside the OpenAI invoice scam: SendGrid abuse and callback phishing explained - Kaseya
SendGrid
January 23, 2026
high impact
SendGrid Platform Exploited in Sophisticated OpenAI Invoice Phishing Scam A recent cybersecurity investigation has revealed a complex phishing scheme targeting businesses by abusing SendGrid's email infrastructure. Cybercriminals are leveraging the legitimate email platform to distribute fraudulent invoices related to OpenAI, attempting to trick recipients into engaging with callback phishing techniques. The scam involves sending seemingly authentic emails that appear to be from OpenAI, using SendGrid's reputation to bypass traditional email security filters and increase the likelihood of successful social engineering attacks.
Key Takeaways
- arrow_right_alt Cybercriminals are exploiting SendGrid's email platform to distribute fake OpenAI invoices
- arrow_right_alt The phishing scheme uses sophisticated callback techniques to manipulate potential victims
- arrow_right_alt Email infrastructure is being misused to bypass traditional security mechanisms
- arrow_right_alt The attack targets businesses with convincing, seemingly legitimate communication
- arrow_right_alt SendGrid's reputation is being leveraged to increase phishing campaign credibility