Hello,
I got this e-mail today and it was in my Junk folder so I thought it was phishing email. But once I opened it sender had microsoft.com in email as domain. After inspecting similar e-mails I noticed that the structure of this e-mail is nothing like when Outlook sends this e-mail.
My question is how the hell did the sender use @microsoft.com domain for his/hers email?
Here is the e-mail:
Can you confirm this is phishing e-mail?
Also for this particular e-mail there are flags ( '!' and 'flag icon') and I think Microsoft never sends those, at least it did not in e-mails I received before. Can you also confirm this?
I mean I'm 99% sure it was phishing, why the heck would Outlook send its own e-mail to Junk xd. But domain part is confusing to me and if it happened to me it may happen to others which could easily click on link sent in that e-mail..
Hi @usanzadunje ,
In order to be 100% certain that your account is safe, please visit: https://account.microsoft.com/security?lang=en-US and check Sign-in activity.
I have seen legitimate emails from Microsoft in the junk folder in the past.
Hi @usanzadunje ,
Thanks for your reply. It is challenging to understand what is happening because we don't have access to the mailbox, but would you be able to View message source and upload the logs? Thanks!
Hi @usanzadunje ,
It's a good catch from your end, as this is definitely a phishing email. See below.
Dkim, dmarc, spf failed... There is no doubt that message was tagged to go to junk, but I also see that action=oreject might have been the reason it went to Inbox.
Hopefully you won't have these issues in the future, but if you suspect to anything you can analyze the heard, go to Message Header Analyzer (mha.azurewebsites.net) and paste the header.
