Enterprise Should Send Email Notifications Only To Verified Domains
policy name: enable_email_notification_to_verified_domains
severity: MEDIUM
Description
The enterprise should mitigate the leakage of sensitive data by allowing email notifications to be sent only to verified or approved domains.
Remediation
- Make sure you are an enterprise owner
- Go to the Enterprise Landing page
- Under the ‘Settings’ tab on the left click ‘Verified & approved domains’
- Press the ‘Add a domain’ button and follow the instructions in the menu
- Check the ‘Restrict email notifications to only approved or verified domains’ box
- Press ‘Save’