Should read "social engineering resulted in security breach" and guess what, this happens all the time whether sendGrid or not.