// LIVE

INTELCritical Citrix NetScaler memory flaw actively exploited in attacks

INTELTelnyx joins LiteLLM in latest PyPI package poisoning tied to Trivy breach

INTELStorm Brews Over Critical, No-Click Telegram Flaw

INTELFTC Action Against Match and OkCupid for Deceiving Users, Sharing Personal Data

INTELTeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Com

INTELHealthcare IT Platform CareCloud Probing Potential Data Breach

INTELSecurity updates for Monday

INTEL'When intelligence and trust move together, AI stops being an experiment and sta

INTELRussian APT Star Blizzard Adopts DarkSword iOS Exploit Kit

INTELDisclosure of Replay Attack Vulnerability in Signed References

INTELHackers now exploit critical F5 BIG-IP flaw in attacks, patch now

INTELTelnyx Targeted in Growing TeamPCP Supply Chain Attack

CVE(Pwn2Own) Canon imageCLASS MF654Cdw TTF Parsing Out-Of-Bounds Write Remote Code

CVEZDI-26-204: Canon imageCLASS MF654Cdw XPS Parser Vulnerability

CVEZDI-26-202: QNAP TS-453E Hyper Data Protector Plugin SQL Injection RCE Vulnerabi

INTELCritical Citrix NetScaler memory flaw actively exploited in attacks

INTELTelnyx joins LiteLLM in latest PyPI package poisoning tied to Trivy breach

INTELStorm Brews Over Critical, No-Click Telegram Flaw

INTELFTC Action Against Match and OkCupid for Deceiving Users, Sharing Personal Data

INTELTeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Com

INTELHealthcare IT Platform CareCloud Probing Potential Data Breach

INTELSecurity updates for Monday

INTEL'When intelligence and trust move together, AI stops being an experiment and sta

INTELRussian APT Star Blizzard Adopts DarkSword iOS Exploit Kit

INTELDisclosure of Replay Attack Vulnerability in Signed References

INTELHackers now exploit critical F5 BIG-IP flaw in attacks, patch now

INTELTelnyx Targeted in Growing TeamPCP Supply Chain Attack

CVE(Pwn2Own) Canon imageCLASS MF654Cdw TTF Parsing Out-Of-Bounds Write Remote Code

CVEZDI-26-204: Canon imageCLASS MF654Cdw XPS Parser Vulnerability

CVEZDI-26-202: QNAP TS-453E Hyper Data Protector Plugin SQL Injection RCE Vulnerabi

OPS INTEL SOURCE: r/sysadmin · 2026-03-25

SPF and DKIM for SaaS sending email

— min read

·

GENERATED BY aria-32b

·

VIA r/sysadmin

#email #security #sysadmin

LOW

The severity is assessed as LOW because the issue primarily affects email deliverability rather than direct security vulnerabilities. There are no known exploits, and the primary concern is operational rather than security.

The scenario describes a situation where SPF and DKIM configurations are needed for SaaS email sending, but the service provider (Gusto) lacks proper configuration knowledge. The impact is potential email deliverability issues due to failed authentication checks by recipients' mail servers.

Affected Systems

Microsoft 365
Gusto SaaS Email Service

Affected Versions: All versions using Microsoft 365 for domain management

Remediation

Configure SPF records on the Microsoft 365 domain to include Gusto's IP addresses or ranges.
Set up DKIM keys in the Microsoft 365 domain and configure signing with Gusto, if possible.
Contact Gusto support again for specific email sending IPs that should be included in SPF.

Stack Impact

This affects services used by SaaS applications interfacing with Microsoft 365 domains for email operations.

// SOURCES

r/sysadmin — Original article ↗