Forum Discussion
Phising e-mail from microsoft domain?!
Hi usanzadunje ,
It's a good catch from your end, as this is definitely a phishing email. See below.
Dkim, dmarc, spf failed... There is no doubt that message was tagged to go to junk, but I also see that action=oreject might have been the reason it went to Inbox.
Hopefully you won't have these issues in the future, but if you suspect to anything you can analyze the heard, go to Message Header Analyzer (mha.azurewebsites.net) and paste the header.
Hi usanzadunje ,
In order to be 100% certain that your account is safe, please visit: https://account.microsoft.com/security?lang=en-US and check Sign-in activity.
I have seen legitimate emails from Microsoft in the junk folder in the past.
Yeah I checked. There is nothing similar to information I got in that e-mail.
So now I am convinced that it is 100% phishing e-mail.
Could you maybe explain how did that e-mail used microsoft.com domain as sender?This is really "scary" since it comes from Microsoft and you said that you have seen legit Microsoft e-mails go in Junk, there is no way to know if this is phishing or not.
Many will click links right away, others might check domain if they were burnt before but even those who do check it are going to get tricked. Luckily I do not trust anyone when it comes to these kind of things.Hi usanzadunje ,
Thanks for your reply. It is challenging to understand what is happening because we don't have access to the mailbox, but would you be able to View message source and upload the logs? Thanks!
