Home / Technology / Zendesk Spam Chaos: New Defenses Fail
Zendesk Spam Chaos: New Defenses Fail
6 Feb
Summary
- Automated emails bombard users via unsecured Zendesk support systems.
- The campaign is suspected to be a Denial of Service attack targeting Zendesk.
- New safety features introduced by Zendesk have failed to stop the spam.
Zendesk's customer support platform is experiencing a significant disruption due to a widespread spam campaign, suspected to be a Denial of Service (DoS) attack. Users are reporting the receipt of dozens, even hundreds, of automated emails with strange subjects and content. These emails are being sent through unsecured Zendesk support systems and bypass most spam filters because they originate from legitimate Zendesk servers.
The issue first surfaced in late January 2026, when numerous fake support tickets were created using vast lists of email addresses. This transformed Zendesk's features into a tool for mass spamming. Zendesk had announced implementing new safety measures, including enhanced monitoring and activity limits, to address this relay spam.
However, these introduced protections appear insufficient, as the bizarre email campaign has persisted. The attacks are believed to overload Zendesk's servers, potentially hindering their ability to send legitimate support emails. The ongoing nature of the spam indicates a continued need for Zendesk to develop and deploy more robust security solutions.
