"Microsoft Password Expiry Notification" Phishing Scams

Microsoft Password Expiry Notification Phishing Scams

Would you share this Article with others?

Microsoft users who have received the fake Microsoft "Password Expiry Notification" email below, which claims their password will expire in 3 days should delete it because it is a phishing scam. The phishing email message is being by cybercriminals to trick their potential victims into clicking on the within them that go to a fake Microsoft website. Once on the fake website, visitors will be asked to sign-in with their Microsoft account credentials (username and password). But, any attempts to sign into the fake website will send their credentials to the cybercriminal behind the scam.

A Sample of the "Microsoft Password Expiry Notification" Phishing Scam

Fra: Microsoft365 Message Center <do-not-reply@exca.onmicrosoft.com>

Sendt: 19. juni 2018 09:56

Emne: Password Expiry Notification

Unsubscribe now to stop receiving this important notification message.

Email password expire in 3 days.

Hello Rma,

Your Email Account () password is set to expire in 3 days, it will expire on.


We recommend you to confirm password below to continue using same password.

Confirm Password

Best Regards,

Note:Please do not ignore this message.

2018 © Microsoft Data.

Once the cybercriminals have gotten their potential victims' Microsoft account credentials, they will gain access to their accounts, hijack them, and use them fraudulently. Hijacked accounts that are used fraudulently will be blocked by Microsoft, therefore, Microsoft users who have been tricked by the phishing scam are asked to change their passwords before their accounts are hijacked.

Microsoft users whose accounts have already been hijacked may follow the instructions below to recover their accounts:

  • Go to https://login.live.com/
  • Enter your email address and click the "Next" button
  • Click the "Forgot my password" link
  • Click "I think someone else is using my Microsoft account" link
  • Follow the rest of the instructions

Remember, never click on a link in an email message to sign into your Microsoft account. Always go directly to www.hotmail.com, www.outlook.com, or login.live.com to sign-in instead. After signing in, important notifications, changes or updates will be shown to you, if there is any.

Note: Some of the names, addresses, email addresses, telephone numbers or other information in samples on this website may have been impersonated or spoofed.

Please share what you know or ask a question about this article by leaving a comment below. Check the comment section below for additional information, if there is any. Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com. And, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent. Also, to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts (OTA) by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews
There are no comments as yet, please leave one below or revisit.

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews.

Write Your Comment, Question, Answer, or Review
Write your comment, question, answer, or review in the box below to share what you know or to get answers. NB: We will use your IP address to display your approximate location to other users.
Your comment, question, answer, or review will be posted as an anonymous user because you are not signed in. Anonymous posts cannot be edited or deleted. Sign-in.

"Microsoft Password Expiry Notification" Phishing Scams