"Microsoft Password Expiry Notification" Phishing Scams

Microsoft Password Expiry Notification Phishing Scams

Microsoft users who have received the fake Microsoft "Password Expiry Notification" email below, which claims their password will expire in 3 days should delete it because it is a phishing scam. The phishing email message is being by cybercriminals to trick their potential victims into clicking on the within them that go to a fake Microsoft website. Once on the fake website, visitors will be asked to sign-in with their Microsoft account credentials (username and password). But, any attempts to sign into the fake website will send their credentials to the cybercriminal behind the scam.

A Sample of the "Microsoft Password Expiry Notification" Phishing Scam

Fra: Microsoft365 Message Center <do-not-reply@exca.onmicrosoft.com>

Sendt: 19. juni 2018 09:56

Emne: Password Expiry Notification

Unsubscribe now to stop receiving this important notification message.

Email password expire in 3 days.

Hello Rma,

Your Email Account () password is set to expire in 3 days, it will expire on.


We recommend you to confirm password below to continue using same password.

Confirm Password

Best Regards,

Note:Please do not ignore this message.

2018 © Microsoft Data.

Once the cybercriminals have gotten their potential victims' Microsoft account credentials, they will gain access to their accounts, hijack them, and use them fraudulently. Hijacked accounts that are used fraudulently will be blocked by Microsoft, therefore, Microsoft users who have been tricked by the phishing scam are asked to change their passwords before their accounts are hijacked.

Microsoft users whose accounts have already been hijacked may follow the instructions below to recover their accounts:

  • Go to https://login.live.com/
  • Enter your email address and click the "Next" button
  • Click the "Forgot my password" link
  • Click "I think someone else is using my Microsoft account" link
  • Follow the rest of the instructions

Remember, never click on a link in an email message to sign into your Microsoft account. Always go directly to www.hotmail.com, www.outlook.com, or login.live.com to sign-in instead. After signing in, important notifications, changes or updates will be shown to you, if there is any.

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search Search engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.
Was this article helpful?  +
Share this with others:

Comments, Questions, Answers, or Reviews

There are no comments as yet, please leave one below or revisit.

To protect your privacy, please remove sensitive or identifiable information from your comments, questions, or reviews. We will use your IP address to display your approximate location to other users when you make a post. That location is not enough to find you.

Your post will be set as anonymous because you are not signed in. An anonymous post cannot be edited or deleted, therefore, review it carefully before posting. Sign-in.

Write Your Comment, Question, Answer, or Review

"Microsoft Password Expiry Notification" Phishing Scams