I’ve gotten a bunch of emails, supposedly from Microsquash. Everything I know screams don’t click on a link in an unsolicited email, ever; however, “they” have sent me a bunch over a couple of weeks & the address kinda-sorta looks legit & is the same from address email to email. What’s your take, dopers?
P.S. there’s nothing in my sent box that I didn’t send & there haven’t been any questionable ones to my inbox either (ie. we reset your password for you). I don’t use this account for anything other than email, no calendar, no one drive, etc. so even if it was compromised, I wouldn’t lose my world.
From address: account-security-noreply @ accountprotection.microsoft.com <– I altered is slightly by breaking the link because otherwise vBulliten tries to insert email tags around it.
Text: Verify your account
We detected something unusual about a recent sign-in for the Microsoft account xxx***@hotmail.com. For example, you might be signing in from a new location, device, or app.
To help keep you safe, we’ve blocked access to your inbox, contacts list, and calendar for that sign-in. Please review your recent activity and we’ll help you take corrective action. To regain access, you’ll need to confirm that the recent activity was yours.
Review recent activity
Thanks,
The Microsoft account team* One device forced me to log in again, but none of the other 4 devices I check this email from were blocked at any point. Yes, password has been updated; should I continue to ignore them or do you think I should click on the link because I’ve only ever gotten that message once (in gmail or DropBox, etc), immediately after logging on from a new device, not repeatedly & for weeks.
You might as well also dance in a counterclockwise circle and chant “bloody mary” three times, too, just to be safe. That’s about as relevant as changing your password would be.
Did you sign in to your account from a new device, just a few minutes before when that e-mail was sent? If so, then it’s probably legitimate. But don’t click on any links in the e-mail, anyway: Just log in the way you usually do.
Question - was this mail sent to the email account that was supposedly blacked? If so, how do they expect you to see it?
First thing to do is to expand the email header to see where this was really coming from. If you choose to update your password, see if you can turn on 2 factor authentication. Kind of a pain at times, but much safer.
Hotmail is the only service that alerts when I’m traveling because I’m logging in from a different locale so they may be legit.
Log into your account normally from a computer and check the notifications. Should be a bell shaped icon in the top right corner. Legitimate warnings will be echoed there.
I’ve gotten alerts from Gmail, Citibank, Vanguard and other companies and services I use when I login from a new computer, or the IP has changed. For instance, here is a message in my Gmail account, “Your Google Account was just signed in to from a new Windows device. You’re getting this email to make sure it was you.” Sometimes, they will send a confirmation code to me by email, text or telephone (i.e., two-factor authentication).
No, but one of my devices was force logged out & I had to log back in on that one, so I thought that might be the item. Don’t know why it got logged out, though.
Will check the headers further when I get back to a real computer (I’m in a hotel right now).
No, I’m in a hotel NOW, they’ve sent me at least 9 emails over the past few weeks, all from the same address in the OP. My experience is spammers don’t use the same address over & over & over again & given it looks kinda legit, I was wondering if it really is real.
Note that by using alternate alphabets someone can obscure a link so that it looks legitimate. E.g., that “o” in “hotmail” might actually be a symbol from another alphabet that looks like an “o” and thus points to the domain that is owned by the scammer which simulates a hotmail login page.
Don’t click on links in email! Not ever. Go to the site in a separate page where you type it in. (At least the domain name part.)
All credit card companies and banks, if they have any sense at all, will address you in the message by actual name, not the email address, and not “Dear Accountholder.” So if your name doesn’t appear, you know it’s a scam. It’s a cold solicitation.
However, if your real name does appear, that doesn’t mean it is legitimate, it just means they have more info about you than just your email address; it’s a hot solicitation.
Worst of all is when banks hire emailing services to send out ads. They may or may not use your name, but the kicker is the address of the sending party, which looks like a phish because it didn’t come from the bank, but a mailing service. They are foolishly training customers to click on something that looks good for that reason alone. Bad practice.
I’ve never had a problem from a hotel when using my laptop. If you log in from a different device, both Yahoo and Gmail sent a code to my smartphone to prove I’m me.
So the question is whether Spiderman is on his own phone/computer or a hotel business service one.
This is not true. I very frequently get bona fide emails asking me to log in via the handy link provided to do something or other. I’ve had them from my bank and other financial accounts, taking me to a page on which I’d enter critical security information.
Of course, I never use the links, and sometimes I send angry emails to their customer services department telling them they are fucking idiots. So long as idiot companies keep doing this, they are to blame for enabling phishing.
In my experience, Microsoft absolutely sends these emails and regularly locks accounts when they think you’re accessing it from somewhere unusual (or from a new device.) It’s for a good cause I suppose but also fairly annoying for someone who travels often.
