Also, Microsoft regularly sends me legitimate emails regarding "Microsoft Rewards" that are absolutely indistinguishable from phishing, like "Total Prize Drop is here! Your chance to win 1,000,000 USD cash grand prize or one of three customizable Mercedes-Benz cars!", complete with links to login pages and everything. So like this one, just as mail: https://xcancel.com/bing/status/2034720189003231410
replyThe first time I got those I couldn't believe these were legitimate. Thank you Microsoft for teaching your customers how to fall for scams!
My Mexican telcom (Telcel) does this over SMS.
reply"Sign up for Uber Eats and win 50,000 MXN of credit https://bit.ly/1234"
What's funny is that they also send these over the same channel:
"Warning: Telcel will never call you nor ask you for your personal info!"
Gee, maybe stop priming your whole customer base to click on messages identical to spam?
That's just for support. Legit password resets for example come from more random top level domains with "microsoft" in it, like microsoftonline.com
replyAnother fun one is facebook, they use facebookmail.com or whatever else for serious security stuff
Is this because at one point <username>@facebook.com was a valid communication method? Great concept to be fair, but once you pull back the first layer you can immediately see its problems.
reply>Legit password resets for example come from more random top level domains with "microsoft" in it, like microsoftonline.com
replyOr aka.ms
The number of redirects while using ms properties is just insane. It makes white listing them in uBO impossible because they redirect so fast, through multiple domains. The White listing is needed to sometimes make them work.
replyIt's a thing with google and facebook too. If you login to youtube or go to facebook account settings, at least 3 redirects through very random places. I guess 3 is not a lot compared to microsoft's 15.
reply