Beware of "Microsoft Updates to Our Terms of Use and Privacy Statement" - it is a Services Agreement Phishing Scam

Updated: March 19, 2018 2018-03-19T12:18:49 -
Posted: August 4, 2016 2016-08-04T11:41:56
Views: 15,409
Comments: 25

The email message below with the subject "Updates to our terms of use and privacy statement," which claims the recipients need to update their accounts in the new Outlook Mail Experience within 48 hours, is a phishing scam sent by cyber criminals, and not by Microsoft. The fake email message was created by cyber criminals to frighten and trick the recipients into clicking on the link within it. The link goes to a phishing website or a fake website looking like Microsoft’s website, created by cyber criminals to trick potential victims into entering their Microsoft account usernames and passwords on it, by asking them to sign in. But, any attempts to sign into the fake website, will result in the victims’ Microsoft account usernames and passwords being sent to cyber criminals.

Once cybercriminals have gotten their potential victims’ account credentials (usernames and passwords), they will use it to hijack their Microsoft accounts and use them fraudulently. Therefore, recipients of the phishing email message (see below) who were tricked into clicking on the link within it and have attempted to sign into the phishing or fake website that they were taken, are asked to change their Microsoft account passwords immediately, before they are hijacked and used fraudulently by cybercriminals.

One of the "Updates to Our Terms of Use and Privacy Statement" Phishing Scams

From: Hotmail Team outlookvalidation@ biometricmatriculation.com
Sent: Thursday, August 4, 2016 12:28 AM
Subject: Updates to our terms of use and privacy statement

You’re receiving this email because we are updating the Microsoft Services Agreement, which applies to one or more Microsoft products or services you use. We’re making these updates to clarify our terms and ensure that they remain transparent for you, as well as to cover additional Microsoft products, services and features.

The Microsoft Services Agreement is an agreement between you and Microsoft (or one of its affiliates) that governs your use of Microsoft consumer online products and services.

If you fail to update your account into the new Outlook Mail Experience in 48 hours, Outlook will terminate its service for your account and all your data will be lost automatically.

Follow the service link below to get your account Validated.

VERIFY

Thank you for using Microsoft products and services.

Since Microsoft sends out Service Agreement and Privacy Statement every year, it is hard to tell the difference between the legitimate and the phishing ones. Therefore, Microsoft customers are asked to view their Service Agreement and Privacy Statement on their website instead. Click here to view.

Note: Some of the names, addresses, email addresses and telephone numbers in email samples on this website may have been impersonated.

Please share what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any.

Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com

Also, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent.

If you want to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews

(Total: 25)

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews. Also, anonymous posts cannot be deleted or edited, and when you make a post, we will use your IP address to display your approximate location to other users.

The comments or reviews below do not necessarily reflect the views of Online Threat Alerts.

September 22, 2018 at 5:11 PM by info
Here is another scam:

-------- Original Message --------
Subject: LAST WARNING: request to change password is being processed
From: MAIL SECURITY

Updates to our terms of
use

Microsoft update: We are updating our Service Agreements, which applies to one or more products or services you use.
Also this updates include more security to protect Your account from being Deactivated from Our server

We recommend you to sign in from your usual location and Secure Account to
protect from being deactivated

Update Account

Action will be effective briefly
This is a mandatory communication about the service. To set communication preferences
for other cases.
remove
May 19, 2018 at 1:13 AM by an anonymous user from Galena, Illinois, United States
I received a Microsoft update message and checked to see if if there was a lock symbol in the upper left corner and there was so I thought it was legit, but it went directly to my email without any update information. I changed my password, but is that enough.
remove
- May 19, 2018 at 6:49 AM by info
  Yes, that is enough.
  remove
March 19, 2018 at 12:15 PM by info
Since Microsoft sends out Service Agreement and Privacy Statement every year, it is hard to tell the difference between the legitimate and the phishing ones. Therefore, Microsoft customers are asked to view their Service Agreement and Privacy Statement on their website instead.

We have updated this article to included the link. Please see the link at the bottom of the article above.
remove
- March 22, 2018 at 3:08 AM by an anonymous user from Frankfurt am Main, Hesse, Germany
  Microsoft (nor any other reputable service provider) would NEVER send a message threatening to delete your account in only 48 hours (unless possibly you were being notified that you are in breach of their terms of use, which this message is not saying).
  
  Just like the fake bank and PayPal messages threatening to block/close your account if you don't update your account details within 24 hours! To me this is a sure sign that a message like this is a scam.
  
  No company would threaten their customers for a T&C or info update, that would be corporate suicide.
  remove
March 19, 2018 at 3:39 AM by an anonymous user from Frankfurt am Main, Hesse, Germany
just received the same message can Microsoft answer to that question ?
Do I have to delete that message and ignore it ?
Yes or not.
remove
- March 19, 2018 at 11:43 AM by an anonymous user from Lawrenceville, Georgia, United States
  You need to look at the sender. Something did come out today that is legitimate from Microsoft, sender email address is msa@communication.microsoft.com.
  remove
  - March 19, 2018 at 12:00 PM by info
    Yes, you are right, Microsoft is currently sending out legitimate emails regarding the same subject. But, be careful because cybercriminals may take advantage of this.
    remove
- March 19, 2018 at 6:00 AM by info
  Some of the message maybe legitimate, therefore, you can read it, but do not click not the links in it.
  remove
March 14, 2018 at 1:05 AM by an anonymous user from Kingston, Ontario, Canada
Is this a scam or rea? Please see email I received:

Begin forwarded message:

"From: Microsoft <msa@communication.microsoft.com>
Date: March 13, 2018 at 11:35:36 PM EDT
Subject: Updates to our terms of use

Microsoft
Your Services Agreement made clearer
Your Services Agreement made clearer
You’re receiving this email because we are updating the Microsoft Services Agreement, which applies to one or more Microsoft products or services you use. We’re making these updates to clarify our terms and ensure that they remain transparent for you, as well as to cover new Microsoft products, services and features.

The Microsoft Services Agreement is an agreement between you and Microsoft (or one of its affiliates) that governs your use of Microsoft consumer online products and services.

You can read the entire Microsoft Services Agreement here. You can also learn more about these updates on our FAQ page here, including a summary of the most notable changes. The updates to the Microsoft Services Agreement will take effect on Ma‍y 1, 20‍18. If you continue to use our products and services on or after Ma‍y 1, 20‍18, you are agreeing to the updated Microsoft Services Agreement.
If you do not agree, you can choose to discontinue using the products and services, and close your Microsoft account before these terms become effective. If you are a parent or guardian, you are responsible for your child’s or teenager’s use of Microsoft products and services, including purchases.

Thank you for using Microsoft products and services.

Microsoft Privacy Statement

Microsoft Services Agreement

Frequently Asked Questions
Microsoft
Microsoft respects your privacy. Please read our online Privacy Statement.

This is a mandatory service communication. To set your contact preferences from Microsoft and its family of companies please click here to unsubscribe.
Microsoft Corporation, One Microsoft Way, Redmond, WA 98052 USA"
remove
- March 14, 2018 at 5:00 AM by info
  No, this one is not a scan.
  remove
March 1, 2018 at 2:25 AM by info
Here is another scam:

"From: Mail Security <jeanettebarraza1@hotmail.com>
Sent: Thursday, February 22, 2018 11:04:44 AM
To: noreply@msn.com
Subject: YOUR MAIL HAS BEEN DISABLED (© 2018 Microsoftsecurity.net)"
remove
June 30, 2017 at 5:14 AM by info
Dear Sirs,

We are continually receiving these types of messages, is there any way to stop them?

-- -- --
From: Microsoft account team [mailto:beth.artemis@btconnect.com]
Sent: 26 June 2017 15:51
Subject: Microsoft Updates Term of Uses and Privacy Policy Statement.

Verify your email address

Dear User,

Our record indicates your account is not updated, which may lead to the close down of your account.

Please visit the link Verify Now to avoid the close down of your account and keep enjoying our services

Sincerely,
The Microsoft Active Directory Team
Microsoft Corporation | One Microsoft Way Redmond, WA 98052-6399
This message was sent from an unmonitored email address. Please do not reply to this message.
Privacy | Legal"
remove
- June 30, 2017 at 8:39 AM by info
  Try flagging them as spam so that your spam filter can send them to your spam/junk folder automatically.
  remove
March 9, 2017 at 2:08 PM by info
Here is another scam:

"From: Hotmail Team sbl3@btinternet.com
Subject: Microsoft Updates Term of Uses and Privacy Policy Statement. OT

Dear Outlook User.

This is to inform you for the final time that on 17th March, 2017, Microsoft Outlook will discontinue support on your account and security.If you choose not to update your account on or before 17th March, 2017, you will not be able to receive incoming email or send emails, and you will no longer have access to many of the latest features for improved, conversations, contacts and attachments.

Take a minute to update your account for a faster, safer and full-featured Microsoft Outlook experience.

Click Here To Update Your Outlook Account"
remove
February 21, 2017 at 3:24 AM by an anonymous user from Norwich, England, United Kingdom
Our company receive the mentioned email every day since beginning of December and it is very annoying.
remove
November 8, 2016 at 12:29 PM by info
Here is another scam:

"From: Hotmail team <donabieliz@btinternet.com>
Sent: 08 November 2016 10:34
Subject: Microsoft Updates Term of Uses and Privacy Policy Statement.

Outlook

Your Account Will be Blocked

Dear User,

We are contacting you to inform you that our Microsoft Account Review Team identified
some unusual errors in your Microsoft account profile. This may be due to the following
Using a shared computer to access your Microsoft Outlook account.
Logging in your Microsoft Outlook account from blacklisted IP
Not logging off your Microsoft Outlook account after usage.
In order to safeguard your account, we require that you confirm your Outlook Account
Access the following link to complete the verification of your Outlook Account.

Click Here To Verify Your Account

Thanks,
Microsoft ID Customer Support
Copyright 2016 Inc.
All rights reserved. Terms of Service,
Microsoft Account Team."
remove
November 3, 2016 at 10:53 AM by info
Here is another scam:

"From: Microsoft Support Team [mailto:Douglas.mcaulay@btconnect.com]
Sent: 02 November 2016 09:44
Subject: Microsoft Updates Term of Uses and Privacy Policy Statement.

Verify your email address

Dear User,

Our record indicates your account is not updated, which may lead to the close down of your account.

Please visit the link Verify Now to avoid the close down of your account and keep enjoying our services

Sincerely,
The Microsoft Active Directory Team"
remove
September 7, 2016 at 10:33 PM by info
Here is another scam:

"From: Microsoft Office [mailto: 12055349@imail.sunway.edu.my]
Sent: 08 September 2016 05:57
To: noreply-microsoftaccountuse@admin.com
Subject: FINAL** WARNING** WARNING** YOUR ACCOUNT WILL BE CLOSED

Dear Outlook.com User.

we’re updating the Microsoft Services Agreement and the Microsoft Privacy Statement. We want to take this opportunity to notify you about these updates for your safety.

If you do not update your Microsoft account within 24 hours your account will be deactivated and deleted from our server and you will no longer have access to many of the outlook.com features for improved Conversations.

Take a minute to update your account for a faster, safer and full-featured Microsoft Outlook experience and to avoid your account being De-Activated.

Update Your Account

Do not fail to update
Thank you for using Microsoft services.

Microsoft respects your privacy. To learn more, please read our Privacy Statement."
remove
September 6, 2016 at 12:38 PM by info
Here is another phishing scam:

"From: admin update <postkingg015@outlook.com>
Sent: September 6, 2016 5:01 AM
To: trackingupdates@fedex.com
Subject: LAST WARNING!!!

Microsoft account
Verify your account

We detected something unusual about a recent sign-in to your Microsoft account. For example, you might be signing in from a new location, device, or app.

To help keep you safe, we need you to verify that this is your Microsoft account to continue using your account, click the button below to verify your Microsoft account.

Continue
Note: Failure to verify your account within the next 48th hours we lead to your to the termination of your account and all your information will be deleted completely.

Thanks,
The Microsoft account team."
remove
August 29, 2016 at 10:43 PM by info
Here is another scam:

"From: customer care
Sent: Monday, August 29, 2016 4:24 AM
To: account-no-reply@hotmail.com
Subject: Important Outlook Info

Dear Customer ,

FINAL WARNING MICROSOFT!!!?

Account suspension notice. Follow instruction to avoid been suspended.
You’re receiving this email because we are updating the Microsoft Services Agreement, which applies to one or more Microsoft products or services you use. We’re making these updates to clarify our terms and ensure that they remain transparent for you, as well as to cover additional Microsoft products, services and features.
Microsoft may at any time terminate its services for your account. Once your account has been verified, we will restore your account to its normal state.

CLICK BELOW LINK TO VERIFY THE NEW MICROSOFT OUTLOOK NOW.

To Verify: Sign in

Kindly note that you have to perform this verification as soon as possible to avoid termination of your mailbox. If you do not agree, you can choose to discontinue using the products and services, and close your Microsoft account before these terms become effective.
The updates to the Microsoft Services Agreement will take effect on August 29 , 20‍16. If you continue to use our products and services on or after August 30, 20‍16, you are agreeing to the updated Microsoft Services Agreement.
Thank you for using Microsoft products and services..
This email represents Microsoft’s final communication with you regarding this account verification.
©2016 Microsoft Corporation
One Microsoft Way
Redmond, WA 98052
USA."
remove
August 29, 2016 at 10:42 PM by info
Here is another scam:

"From: CUSTOMER CARE
Sent: Sunday, August 28, 2016 9:16 AM
To: no_reply@outlook.com
Subject: Update to our terms of use and privacy statement

Microsoft account
Verify your account

We detected something unusual about a recent sign-in to your Microsoft account. For example, you might be signing in from a new location, device, or app.

To help keep you safe, we need you verify that this is your Microsoft account to continue using your account, click the button below to verify your Microsoft account.

Verify your account

Note: Failure to verify your account within the next 48th hours we lead to your to the termination of your account and all your information will be deleted completely.

Thanks,
The Microsoft account team."
remove
August 12, 2016 at 9:45 AM by info
Here is another scam:

"From: Microsoft <msa@communication.microsoft.com>
To: melskij1@comcast.net
Sent: Fri, 12 Aug 2016 02:45:44 -0000 (UTC)
Subject: Updates to our terms of use and privacy statement

* Your Services Agreement and Privacy Statement made clearer *

You’re receiving this email because we are updating the Microsoft Services Agreement, which applies to one or more Microsoft products or services you use. We’re making these updates to clarify our terms and ensure that they remain transparent for you, as well as to cover additional Microsoft products, services and features.

The Microsoft Services Agreement is an agreement between you and Microsoft (or one of its affiliates) that governs your use of Microsoft consumer online products and services.

Here are some of the most notable changes to the Microsoft Services Agreement:
• Coverage for additional services (like GroupMe and Group Messaging) and new functionality and features for covered services (like Skype, Bing and our Rewards program)
• Clarifications that your work or school account is covered by different terms
• Notice that Xbox now requires that you sign in at least every 5 years to keep your gamertag active
• Explanation of data storage limits for OneDrive and factors that could affect syncing and uploading to OneDrive services
"
remove
- March 19, 2018 at 11:45 AM by an anonymous user from Lawrenceville, Georgia, United States
  That one actually looks legit, that address is the one they use for these communications.
  remove
August 6, 2016 at 4:42 AM by an anonymous user from Loughton, England, United Kingdom
Re the above email ~ Be careful if copy and paste the above email address of info@onlinethreatalerts.com

On the document above there is a FULL STOP after 'com'
On send a message from BT/Yahoo came up with 'please enter a valid email address'

Only when I typed it by hand did I realise why incorrect email address alert came up,
having also copied the full stop at the end of the 'com'
remove

Show More Comments (25)

Show all