Microsoft 365 Email phishing scams!

The email below is a classic example of an email phishing scam trying to steal my MS 365 login credentials.
The sender is trying to request me to click on a link to update my MS 365 password.

At first glance, it can look like a genuine email but if we look closer, we can see some clues that prove otherwise.


  1. The sender’s address. The display name shows IT Servicedesk | but the actual email address highlighted shows a random address.

example of a scam

  1. The link (URL) – If you HOVER over the URL (Don’t click on it!), we can see the link goes to some random website. This website will likely look something similar to a Microsoft page and will request you enter your details so the hacker can steal your login credentials.

example of a scam 2

Other signs to look out for are bad spelling and grammar.

Make sure you use secure passwords with a mix of upper case, lowercase and special characters. We also recommend Multi Factor Authentication is enabled on all accounts where possible including Microsoft 365.

If ever in doubt about email scams and security, you can contact Comcare Technology. We can review and improve your network security including implementing Multi Factor Authentication.