Phishing the Supply Chain: Is Your Vendor Email Security an Invitation for Threat Actors?

CloudSEK's SVigil discovered a misconfigured SPF record (soft-fail ~all) on a logistics SaaS provider's primary domain, which could allow attackers to spoof the vendor's emails and enable business email compromise, targeted phishing, malware distribution, and brand blacklisting; the report recommends switching to SPF hard-fail (-all), deploying DKIM, enforcing strict DMARC (p=reject/quarantine) and continuously monitoring DMARC reports.