An employee’s credentials were used to access systems that contained “usernames, email addresses, and (salted and iteratively hashed) passwords for SendGrid customer and employee accounts. A Bitcoin-related customer was compromised, and had their SendGrid account used to send Phishing emails. 600 customers with custom DKIM keys are being asked to generate new ones and update DNS records to reflect the change. SendGrid is working to expedite the release of API keys, which will enable customers to use keys instead of the standard username/password function.”]