I am receiving tickets from a spoofed email address in my Zendesk account. Why don't these tickets end up in the suspended tickets view?
It is likely that you don't have the sender authentication feature enabled in your account. Use the dropdown menu below to select your subdomain and navigate to the Email tab within the Admin Center:
Under Authenticate emails received with SPF, DKIM, and DMARC alignment, select Enable.
If you already have the sender authentication feature enabled, then check the allowlist of your account. If you can see the spoofed email listed in there, remove it to block access to your account.
For related information, see this article: How can I bulk delete spam tickets in Zendesk?