What is causing the excessive emails from Zendesk?

A spam campaign, suspected to be a Denial of Service attack, is sending automated emails through unsecured Zendesk support systems.

Have Zendesk's new safety features stopped the spam?

No, the new safety features introduced by Zendesk in late January 2026 have not stopped the ongoing spam campaign.

When did the Zendesk spam issue begin?

The attacks were first spotted in late January 2026 when hackers created numerous fake support tickets.

Home / Technology / Zendesk Spam Chaos: New Defenses Fail

Zendesk Spam Chaos: New Defenses Fail

6 Feb

•

Summary

Automated emails bombard users via unsecured Zendesk support systems.
The campaign is suspected to be a Denial of Service attack targeting Zendesk.
New safety features introduced by Zendesk have failed to stop the spam.

Zendesk's customer support platform is experiencing a significant disruption due to a widespread spam campaign, suspected to be a Denial of Service (DoS) attack. Users are reporting the receipt of dozens, even hundreds, of automated emails with strange subjects and content. These emails are being sent through unsecured Zendesk support systems and bypass most spam filters because they originate from legitimate Zendesk servers.

The issue first surfaced in late January 2026, when numerous fake support tickets were created using vast lists of email addresses. This transformed Zendesk's features into a tool for mass spamming. Zendesk had announced implementing new safety measures, including enhanced monitoring and activity limits, to address this relay spam.

However, these introduced protections appear insufficient, as the bizarre email campaign has persisted. The attacks are believed to overload Zendesk's servers, potentially hindering their ability to send legitimate support emails. The ongoing nature of the spam indicates a continued need for Zendesk to develop and deploy more robust security solutions.