惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

月光博客
月光博客
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
N
Netflix TechBlog - Medium
大猫的无限游戏
大猫的无限游戏
爱范儿
爱范儿
Martin Fowler
Martin Fowler
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The Register - Security
The Register - Security
IT之家
IT之家
博客园_首页
Microsoft Security Blog
Microsoft Security Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
博客园 - 三生石上(FineUI控件)
I
InfoQ
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Jina AI
Jina AI
Apple Machine Learning Research
Apple Machine Learning Research
M
MIT News - Artificial intelligence
博客园 - Franky
C
Check Point Blog
T
The Blog of Author Tim Ferriss
V
Visual Studio Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
T
Tailwind CSS Blog
Recent Announcements
Recent Announcements
云风的 BLOG
云风的 BLOG
美团技术团队
The Cloudflare Blog
Y
Y Combinator Blog
H
Hackread – Cybersecurity News, Data Breaches, AI and More
MyScale Blog
MyScale Blog
The GitHub Blog
The GitHub Blog
D
DataBreaches.Net
Google DeepMind News
Google DeepMind News
V
V2EX
aimingoo的专栏
aimingoo的专栏
GbyAI
GbyAI
G
Google Developers Blog
S
SegmentFault 最新的问题
Hugging Face - Blog
Hugging Face - Blog
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
U
Unit 42
罗磊的独立博客
量子位
MongoDB | Blog
MongoDB | Blog
Last Week in AI
Last Week in AI
Stack Overflow Blog
Stack Overflow Blog
小众软件
小众软件
D
Docker
人人都是产品经理
人人都是产品经理

Hackread – Cybersecurity News, Data Breaches, AI and More

Operation Endgame Disrupts StealC, Amadey and SocGholish Malware Networks New GhostShell Hacking Group Targets Ukraine’s Drone Defense Sector Fake npm Packages Impersonate PostCSS Tool to Steal Chrome Passwords Best Crypto Payment Solutions for E-Commerce Businesses Internet Society Foundation Opens Global Call for Common Good Cyber Fund to Strengthen Cybersecurity LastPass Confirms Customer Data Breach After Klue OAuth Token Theft ‘Cordyceps’ CI/CD Flaw Exposes Microsoft, Google, Apache Repos to Pipeline Hijacking The Rise of AI-Powered Academic Fraud: Beyond Traditional Plagiarism New CryptoBandits Malware Uses USB Drives and Tor to Steal Crypto The Evolution of iGaming Fraud: What Security Teams Should Expect in 2027 2 Scattered Spider-Linked Hackers Plead Guilty Over £39M TfL Cyberattack Beats Studio Buds Flaw Could Let Nearby Attackers Eavesdrop on Users Texas Parks and Wildlife Data Breach Affects Over 3M License Customers Threat Hunting Beyond Alerts: Finding the Activity Detection Misses Scammers Use Fake GitHub Stars, VirusTotal Reviews to Spread Crypto Clipper Salesforce Disables Klue Integration After OAuth Token Theft Hits Customer Data MDR Provider Comparison: Time to Discover and Respond to Threats Meteor 3.0 Migration Helped Rocket.Chat Move Off End-of-Life Node.js Runtime Gcore Helps Ucom Safeguard Public Live Broadcast Infrastructure During Armenia’s Parliamentary Elections Nintendo America Employee Data Exposed After Shadowbyt3$ Targets TinyPulse eFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks FIFA World Cup 2026: Hackers Target Football Fans With Fake Tickets Sites MacBook Neo vs Windows Laptops for Cybersecurity Tasks Operation Endgame Disrupts SocGholish Malware Infrastructure What Businesses Should Know Before Migrating Their CMS DragonForce Ransomware Abused Microsoft Teams to Hide Malware Activity Agentjacking: Researchers Show How One Fake Bug Report Can Hijack AI Coding Agents FortiBleed Attack Exposes Fortinet Firewall Credentials in 194 Countries SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies 152 Chrome Live Wallpaper Extensions Hid Ad Tracking and Fake Search Clicks Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It ESET MDR vs Sophos MDR: Compared Time to discover and respond to a threat 15 Malicious JetBrains Plugins Caught Stealing DeepSeek, OpenAI API Keys Amos Stealer Targets macOS Keychain Files and Browser Passwords Aembit Extends IAM for Agentic AI to Microsoft Copilot Studio AppViewX Launches Agent Identity Security to Govern Agents for the AI and Quantum Era New Rokarolla Android Trojan Found Targeting 217 Crypto and Banking Apps Developer laptops are the credential store attackers are picking through in 2026, GitGuardian announces Endpoint Protection Best of Android Fax Apps: Top 5 Secure Picks for 2026 Feds Seize CFAKE and SOCFAKE Over Explicit Deepfakes of Famous Women Handala Hacking Group Claims Breach of California Water Service Over 50 Android Apps Found Spreading MagicAd Trojan via Official Stores Hackers Hide New Argamal Malware Inside Working Hentai Games Extradited Ukrainian Man Admits Role in Conti Ransomware Attacks Atomic Arch Campaign Hijacks 20+ Linux AUR Packages to Deliver Malware ShinyHunters Target Universities in Oracle PeopleSoft Zero-Day Attack The SpaceX Pre-IPO Market: How Crypto Rails Are Opening Synthetic Access Feds Seize AudiA6 and Dark2Web in $389M Crypto Laundering Case ShinyHunters Leak 40GB of University of Nottingham Student Data Authorities Dismantle Decade-Old SniperDZ Phishing Network Criminal IP at Infosecurity Europe 2026: Introducing AITEM, the Next Chapter of Attack Surface Management Hackers Use Fake Claude Code Guide and AI PDFs to Spread AsyncRAT Malware The Hidden Security Risks of Poor Software Testing FBI Seizes China-Linked Fake Consulting Sites Targeting US Clearance Holders How to Turn Images into Animated Videos with AI: A Wondershare Filmora Guide Scammers Use TikTok and Instagram Reels to Spread Vidar Infostealer ServiceNow Discloses Security Incident Exposing Customer Data Cloud Security Report Finds Fragmented Tools Widening the Cloud Complexity Gap Microsoft June 2026 Patch Tuesday Fixes 206 Flaws and 3 Zero-Days Network Log Analysis: Why Collecting Logs is Not Enough E-Signature Security Checklist Before Selecting an E-Signature Tool Maine Govt Portal Lists 10M Discord Data Breach Notice, But Filing Shows Red Flags Handala Claims Israeli Radar Hack, But Evidence Shows Phone Admin Panel WhatsApp Says It Blocked Pegasus Spyware Campaign Linked to NSO Operation FlutterBridge Uses Fake Google Ads to Spread macOS Backdoor Hackers Clone Ghidra, dnSpy and Other Tool Sites to Spread Malware Silent Ransom Group Uses Fast Flux Botnet to Hide Law Firm Leak Sites New Pink Extortion Group Targets Microsoft 365 Cloud Data Via Vishing Scams Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account Atlas Menu Data Breach Exposes 64,000 GTA V and CS2 Cheat Service Users Reaper macOS Infostealer Abuses Script Editor to Steal Crypto and Passwords iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil Why eSIMs Are Replacing Traditional SIM Cards Lazarus Group Uses npm Brandjacking Campaign to Target Developers Five Eyes Warns Chinese Spies Are Using Fake Job Ads to Target Military Staff How to Recover Data from iCloud Backup Without Resetting Your iPhone China-Linked TA4922 Hackers Target UK, Europe With New SilentRunLoader Malware Alcasec, "Robin Hood of Spanish Hackers," Jailed for 31 Months Over Data Theft Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts New WordPress Malware Uses Steam Profile Comments to Hide C2 Instructions Halo Security Honored with 2026 MSP Today Product of the Year Award Why Encrypted File Sharing Is Essential for Modern Businesses What One Predator Case Can Reveal About an Online Platform’s Safety Gaps RaccoonLine Publishes 2026 dVPN Buyer’s Guide for Privacy-Focused Users How to Get a Reddit API Key in 2026: Step-by-Step Guide Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts How to Get the Most From Your Explainer Video Production Services Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives 27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens Fake Anthropic Sites Deliver Fileless Infostealer to Claude Code Users The CISO Whisperer's Watch List For The Gartner Security & Risk Management Summit 2026 Can Big Data Predict Market Movements Accurately? Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms How Can MSSPs Scale Threat Detection Without Burning Out Their Analysts? Link11 is fully committed to Europe and is opening a Customer Excellence Hub in Lisbon Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning Claude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month FBI Chief Kash Patel’s Clothing Store Hacked in ClickFix Infostealer Attack Netherlands Busts Bulletproof Hosting Network Linked to Disinfo and Cybercrime
The Deliverability Problem: How New Platforms Are Solving Inbox Placement
Owais Sultan · 2026-05-29 · via Hackread – Cybersecurity News, Data Breaches, AI and More

Email still reaches more people than any other digital channel. Getting it to actually land in the inbox is harder than it used to be, and a new generation of tools is built around that specific challenge.

For most of the internet’s commercial history, email worked simply enough. You sent a message. It arrived. The question of whether it reached the inbox or disappeared into a spam folder was an afterthought, something you worried about if things went wrong. For most senders, things rarely went wrong.

That is no longer the case. In 2024, global inbox placement rates fell to around 83.5 percent, according to Validity’s annual deliverability benchmark, meaning roughly one in six legitimate emails never reaches the person it was sent to. Spam complaint rates nearly doubled over the course of the year. And the platforms responsible for delivering the world’s email, Gmail, Outlook, Yahoo, moved in 2024 to formalize what had previously been informal expectations, introducing mandatory authentication requirements for anyone sending at scale. Microsoft followed with its own enforcement in May 2025.

The result is an environment where getting email to the inbox is genuinely difficult, where the rules are more complex than they have ever been, and where the consequences of getting it wrong are slow, invisible, and compounding. A new category of infrastructure tools has grown up around this problem, not email marketing software, but the underlying plumbing that determines whether email arrives at all.

What changed, and why it matters

For years, the major inbox providers used content-based filtering to identify spam: certain words, certain formatting patterns, certain link structures triggered their systems. Senders adapted, sometimes legitimately, sometimes by gaming the filters, and the providers adapted in response.

What changed was the shift toward reputation-based filtering. Rather than asking whether an email looks like spam, the major providers began asking whether the sender behaves like a legitimate one; a question answered not by what was in the email, but by the entire history of how that domain and IP address had behaved across thousands or millions of sends. Spam complaint rates, engagement patterns, bounce rates, authentication records: these became the primary inputs.

The 2024 requirements from Google and Yahoo formalized this shift. Bulk senders, defined as those dispatching more than 5,000 messages a day to Gmail or Yahoo addresses, were required to implement a set of authentication protocols that verify their identity to receiving mail servers. The protocols themselves had existed for years as industry best practices. Making them mandatory, with enforcement that now includes outright rejection of non-compliant email, ended the ambiguity around whether they were optional.

The core requirement is a trio of technical records. SPF specifies which servers are authorized to send on behalf of a domain, so receiving servers can confirm the email originated from a legitimate source. DKIM adds a cryptographic signature to outgoing messages, giving the recipient’s server a way to verify that the content has not been altered in transit. DMARC sits on top of both, letting the domain owner define what should happen, whether to quarantine, reject, or allow, when an email fails those checks. As of May 2025, Microsoft has aligned with the same requirements, making authentication effectively mandatory across all three of the world’s dominant inbox providers.

The practical effect has been significant. According to GlockApps’ analysis of deliverability data from the first quarter of 2025, inbox placement for very high-volume senders, those dispatching more than a million emails per month, fell by more than 22 percentage points year over year, dropping below 28 percent. Microsoft remains the most difficult provider to reach, with an inbox placement rate of around 75 percent.

A problem that compounds in silence

The particular difficulty of email deliverability as a business problem is that it degrades slowly and without obvious warning signs. Unlike a server going down or a payment failing, declining inbox placement does not trigger an alert. The emails are still sent. The delivery confirmations still return as successful; ‘delivered’ in the technical sense means accepted by the recipient’s mail server, not placed in the inbox. What is actually happening only becomes visible in aggregate, over time, in the form of declining open rates, rising support tickets from users who never received a password reset, or onboarding sequences that users simply do not appear to complete.

This invisibility is one reason the problem persists. The teams most affected are often the last to know. Developers building transactional email, the notifications, confirmations, and account communications that keep a product functioning, typically have neither the tooling nor the mandate to monitor deliverability. Marketers who run campaigns have more visibility into open rates but often lack the technical context to understand what is driving changes. And the two streams frequently share infrastructure: the same sending domain, the same IP reputation. When a poorly targeted marketing campaign generates spam complaints, the damage can ripple through to the password resets and two-factor codes that users actually need to receive.

How the newer platforms approach it differently

The market for email deliverability tooling has grown accordingly. Research from ResearchAndMarkets puts the sector at around $1.24 billion in 2024, on a trajectory to exceed $2 billion before the end of the decade. The tools on offer range from authentication setup and inbox placement monitoring to reputation tracking, list hygiene, and full email delivery APIs built explicitly around deliverability performance.

Mailtrap, Postmark, and a cohort of newer entrants were built around the specific problems that have become central: environment isolation during development, sender reputation monitoring, per-stream analytics, and Email Sandbox infrastructure that lets teams catch problems before they affect real users. Their approach differs from the established senders, SendGrid (now part of Twilio), Amazon SES, and Mailgun, which grew primarily as high-volume sending infrastructure optimized for throughput. Those platforms have expanded their deliverability tooling over time, but their fundamental design reflects an earlier era’s priorities.

The origin of Mailtrap is representative of how several of these newer platforms came to exist. Railsware, the software studio behind the product, accidentally sent test emails to real customers in 2011 while working on a client project, a mishap common enough in software development that it has its own informal taxonomy among engineers. The tool they built in response was originally internal: a way to intercept all email sent from non-production environments and hold it safely, so developers could inspect it without any risk of it reaching real users.

“Our product culture came from solving our own problems,” Sergiy Korolov, co-CEO of Railsware, said in a podcast interview with Code Story. “Our idea was simple: let’s make a trap of an inbox that will show all the emails that the app sends from development and staging environments. The product appeared, and then it started mutating and expanding.”

What began as an Email Sandbox has since grown into a full delivery platform, expanding from development-environment testing into production sending, with analytics and deliverability monitoring built in. The progression tracks closely with how the deliverability problem itself has evolved: the question is no longer just how to keep test emails away from real users, but how to ensure real emails reach real inboxes once the product ships.

Like Mailtrap, Postmark took a similar stance on a specific structural problem. From its founding, the platform separated transactional and marketing email onto different IP pools, based on the observation that mixing the two creates reputation contamination: a poorly received marketing campaign can degrade the sending reputation that password resets and account alerts depend on. That separation, which many senders now treat as standard practice, was a deliberate architectural choice.

What these platforms share is a design premise: that deliverability is a system property, not a setting, and that the infrastructure should make the right behavior the default rather than an optional configuration. That means separating environments at the infrastructure level so that developer activity does not contaminate production reputation. It means per-stream analytics that show inbox placement by provider, not just aggregate delivery rates, because Gmail and Outlook each maintain independent assessments of a given domain, and a sender can be performing well at one while quietly failing at the other. And it means building authentication correctly from the start, rather than retrofitting it after a deliverability problem has already developed.

The structural shift underway

What the 2024 and 2025 enforcement actions by Google, Yahoo, and Microsoft represent is something more significant than a policy update. They reflect a structural realignment in how the email ecosystem assigns responsibility for inbox quality. For most of email’s commercial history, that responsibility sat primarily with the receiving end: spam filters were the inbox providers’ problem, and senders adapted to whatever filters happened to be in place.

The new requirements shift meaningful responsibility to the sending side. If a domain is not properly authenticated, its email does not arrive, regardless of how good the list is or how relevant the content. If the complaint rate exceeds the published thresholds, inbox placement deteriorates. The incentive structure that once allowed senders to treat deliverability as an edge case now makes it a prerequisite.

For the platforms built around this shift, the market opportunity follows directly from that change. For the companies sending email, which is to say nearly every company with a digital product, the implication is that infrastructure choices once considered technical details now have direct consequences for whether their email works at all.

The inbox, it turns out, is not a given. It has to be earned, maintained, and monitored; and the tools for doing that have become, quietly, a meaningful part of the business of building software.