Forum Discussion

Trevor_Rusher's avatar
Trevor_Rusher
Icon for Community Manager rankCommunity Manager
Mar 14, 2025
Solved

Microsoft Security Fun Friday Week 5! This week's game- Spot the Phish!

Hey there Security Tech Community! We're back with Week 5 of our Security Fun Fridays. This week's game is Spot the Phish! Phishing is a very common cyberattack that typically targets emails and lures victims to click phony hyperlinks that share their personal information. Below I will post 3 screenshots of example Phishing Attacks and I want you to identify the most OBVIOUS ISSUE in each one. The first 2 people to respond in the comments with all 3 correct answers will earn our new "Microsoft Security Star" Badge to add to their profile. I will give everyone until Wednesday 3/19 to guess before I reveal the correct answers and award the badges (so even if 2 people answer before you, they may not be correct). Good luck!

Note: This badge is only given out during Fun Friday games or by being an outstanding member of the community, so it is very exclusive!

SPOT THE PHISH!

Screenshot 1Screenshot 2Screenshot 3

 

  • #1: The from address isn't believable for a dedicated Microsoft support account

    #2: The "Tunes payment" link text is missing the "i"

    #3: This is the toughest of the three. I have to go with "general nonsense" as the most obvious. I can prevent my password from expiring by clicking a link? This sort of implies this is an inactivity warning, not an expiration. 

4 Replies

  • Trevor_Rusher's avatar
    Trevor_Rusher
    Icon for Community Manager rankCommunity Manager

    Hi all!

    Thanks for playing. I will be awarding the badge to jbmartin6 as the first person to correctly guess all 3! Great job!

  • 1. MS Support Email address is wrong, with some impersonation, 2. Writing Style casual and wordings like "Due to that" 3. Tunes payment should be iTunes 4. Spaces between wordings unusual

  • jbmartin6's avatar
    jbmartin6
    Iron Contributor

    #1: The from address isn't believable for a dedicated Microsoft support account

    #2: The "Tunes payment" link text is missing the "i"

    #3: This is the toughest of the three. I have to go with "general nonsense" as the most obvious. I can prevent my password from expiring by clicking a link? This sort of implies this is an inactivity warning, not an expiration. 

  • yurik965's avatar
    yurik965
    Copper Contributor

    The from email address is suspicious, has a random set of numbers and letters and doesn't look like an official Microsoft e-mail (i.e. microsoft.com)

Resources