Hi!
I’ve recently noticed a smattering of account verification emails from no-reply@auth0user.net for accounts in our security catchall mailbox.
It appears that a malicious third party is attempting to sign up to your services using our domain, hoping that one of our people might accidentally click on the account verification link.
I’ve reported this to customer service yesterday but haven’t heard back, and it appears the actor(s) aren’t being blocked and the activity continues.
I’ve unfortunately had to resort to reporting all auth0 mails as spam and phishing activity.
We’re not an auth0 customer at this time.