Late last week, Google flagged email messages sent by Chameleon as malicious or containing links to malicious sites.
This email is to notify you that the flag has been removed, and no Chameleon messages contained malicious content or links to sites containing malicious content.
The issue was due to Google identifying the domain of our email provider (Intercom) as malicious. This was caused by a series of attachments from other Intercom customers being flagged by Google as "dangerous" and in turn causing our emails to be marked the same way.
We take security seriously and launched our own investigation into the issue and worked with Intercom to gain more information and a quick resolution. We will be conducting a fresh vulnerability test, audited by a third-party, to further validate and strengthen our security practices.
We are also reviewing and re-evaluating our email delivery system so that we reduce the risk of this happening again.
We apologize for the alerts and want to re-assure you that Chameleon emails are safe and contain safe (and hopefully valuable) links.
If you have any concerns, please reply and we will do our best to address them.