How Does Catchall Verification Work?

Email verification was a commodity for the longest time -- all products did the same thing and produced similar results.

But recently, a dozen startups (Findymail, Prospeo, Scrubby, Leadmagic, etc) emerged claiming to do it "better" than legacy players. These companies have gotten a lot of attention, due to their claim that they can verify 50% more emails, which leads to larger email list sizes, which in turn leads to more revenue.

However, marketers using these services have noticed a lot more variance in results, both in terms of what percentage catchall emails they can verify and the accuracy of the results. They've also seen a big discrepancy in pricing, leading them to ask many questions...

• What's the difference between these tools?
• Is it worth paying the extra $$$ to include them in a waterfall?
• Which ones should I test out?
• etc.

In this article, we're going to answer all of these questions by doing a deepdive using research gathered over the past two years in the Delivery Lab.

What is Catchall Verification?

The "old school" way of verifying email addresses is "SMTP verification", which involves probing a remote email server to check if an email exists (this article goes deeper into this topic.)

Because this method works by exploiting a security vulnerability, it tends to only work for smaller organizations without IT teams and works about 45% of the time.

The remaining 55% of email addresses are categorized as "catchall" emails.

How do these email verifiers work?

Today there are four flavors of catchall verification available on the market (in addition to SMTP

1) App User Verification

What is App User Verification?

This is what most of the new email verification providers do today.

It involves building workflows that attempt logging into third party apps and seeing if there is some positive confirmation that an account with that email exists.

How Does App User Verification Work?

Let's explore this with an example:

• You want to verify an email [email protected]
• You go to a third party app website like trello.com and click 'Sign Up'
• You fill out the form with [email protected] and get this error back.

This error tells you that a user at some point created a Trello.com account with this email address. Because we know Trello only shows this message after a user verifies an account with a valid email in the signup flow, we can conclude that the email was valid at some point.

Similar workflows can be setup across many apps, including some email providers themselves (eg: the microsoft login flow)

Why Do Results/Accuracy Vary?

For this method to work, you need to use sites that have LARGE user bases, which are not provisioned by IT (eg: twitter, youtube, trello, etc) and which are explicitly created with work emails (eg: github usually won't work).

Furthermore, major providers like Google and Microsoft now either block these checks or even intentionally provide invalid/inconsistent results when they detect suspicious activity.

Finally, the bounce rate from these emails will vary because these third party apps aren't in sync with the target email server. For example, the target email may have existed at some point on twitter.com but if the user leaves their company, the twitter account will continue to remain long after the underlying email has been deactivated.

...

[Want to continue reading the rest of this article? You can find it here on the Deliverability Blog]

https://trykitt.ai/blog/post/36/how-does-catchall-verification-work