I’ve had an email from noreply@monzo asking me to Log In stating;
“As part of our security procedures, Please note that your Monzo Online account security is about to expire. In order for it to remain active please update your account.”
I’ve just, and only just, bothered to look for any tooling in the BlueMail app that I use on my phone and found it can expose the headers which shows this to come from a nice long string of obsfuscated relays.
It’s used “sendgrid.net” and “ukmail.iss”.
I thought it best to check and to expose it incase anyone else got one of these and wasn’t as on the ball.
Not that I consider myself on the ball, but I at least saw through this one.
There is no rest of the address. It’s just noreply@monzo which was that initial give away but I’ve seen some fairly random domain suffixes over the last few months so not exactly 100% on that as a clue but thanks again.