Microsoft ‘Unusual Sign-In Activity’ Email Phishing Scam

This email, which purports to be from the “Microsoft Team”, claims that the company has detected something unusual about a recent sign-in to your Microsoft account.

It asks you to click a link to open your recent activity page and let Microsoft know if the “unusual” sign-in was you or someone else. Supposedly, you’ll get help to secure your account if it wasn’t you.

However, the email is not from Microsoft and the claims about a suspect sign-in are just a trick to get you to click the link. It is a phishing scam designed to steal your account login credentials.

If you do click, you’ll be taken to a fraudulent website that looks like it belongs to Microsoft. Once on the fake site, you’ll be asked to log in with your Microsoft account details.

You’ll then see a message claiming that you have successfully secured your account.  Next, you’ll be automatically redirected to the genuine  Microsoft account login page.

But, in the meantime, the crooks can harvest the information you provided and use it to hijack your Microsoft account. Your Microsoft account login may provide access to several linked services including email, Skype,  OneDrive, and Office 365.

So,  the scammers can now use these services to distribute spam and scam emails, collect and steal your personal information and private files,  and conduct fraudulent transactions and activities in your name.



Phishing scams like this are very common. This video from the Hoax-Slayer YouTube channel gives more information about such scams:

Microsoft has information about recognizing and reporting phishing scams on its support website.

Transcript of the scam email: