Google Suspicious Link Warnings

A number of folks in the sender space are reporting intermittent “This link may be suspicious” warnings on their emails. I first heard about it a few weeks ago from some clients. One wasn’t sure what was going on, the other found a bunch of malware uploaded into their customer accounts.

At least 3 people have mentioned it today. One of them asked on Mailop, and the couple Google employees over there are generally pretty helpful when issues like this come up.

What we currently know:

  • Multiple senders are seeing warnings;
  • The warnings are intermittent and not reproducible;
  • They’re affecting lots of links, including some ESP click domains.

From the outside, it looks like Google is being overly aggressive with their suspicious link detector and are generating a significant number of false positives. This is something they’ve got to fix. I’ll update when I know something.

Related Posts

What’s a suspicious domain?

The question came up on slack and I started bullet pointing what would make a domain suspicious. Seemed like a reasonable blog post. In no particular order, some features that make a domain suspicious to spam filters.

Read More

Phishing and authentication

This morning I got a rather suspicious message from a colleague on LinkedIn.

Read More

What’s up with gmail?

Increasingly over the last few months I’ve been seeing questions from folks struggling with reputation at Gmail and inbox delivery. It seems like everything exploded in the beginning for 2019 and everything changed. I’ve been avoiding blaming it all on TensorFlow, but maybe the addition of the new ML engine really did fundamentally change how things were working at gmail.


Read More