Receiving an email that looks like it's from Grammarly doesn't always mean it's safe to act on. There are two types of risk to be aware of.
1. Emails that look like they are from Grammarly but relate to a document containing malicious content
Attackers can use document-sharing notifications to include fraudulent information. This includes both the notification text itself and the document it links to. Neither is created or reviewed by Grammarly, which means attackers can use them to embed fraudulent instructions, phone numbers, links, or email addresses.
Even if an email comes from a verified Grammarly domain, always verify that you recognize the sender's email address before opening a shared document. Do not call any phone numbers, click any links, download any files, or contact any email addresses referenced in the notification or the document unless you can independently confirm they are trustworthy.
If you receive a suspicious email or document — even one that appears to come from Grammarly — please forward it to support@grammarly.com so our team can investigate.
2. Emails that aren't from Grammarly at all
Some emails may impersonate Grammarly but were never sent by us. To verify an email is genuinely from Grammarly, check that it was sent from one of the following domains:
- @grammarly.com
- @bounce.send.grammarly.com
- @send.grammarly.com
- @security.grammarly.com
- @em.grammarly.com
- @info.grammarly.com
- @mail.grammarly.com
- @grammarly.zendesk.com
- @notification.grammarly.com
- @hello.superhuman.com
- @info.superhuman.com
- @notification.superhuman.com
In some email clients, such as Gmail and Yahoo, you should also see the Grammarly logo next to the subject line and a blue verified checkmark beside the sender’s name.
If you received an email that imitates Grammarly / Superhuman but was not sent from one of the domains above, then please forward the full email to support@grammarly.com.