0

I recently got an email from "microsoft team" that landed in my outlook junk. This leads to my first question:

  1. If this is a legitimate email from "[email protected]", howcome their own emails land in junk folder of their own email client? Is it not in the interest of Microsoft to make sure their own emails are never marked as junk?

Now this email informed me about someone from India (nowhere close to where I live) logging into my account.

However, this email is not digitally signed- here is my second question:

  1. If this is a legitimate Microsoft email why does Microsoft not sign it so their users can be sure it's an authentic email?

Because it is not signed, I don't want to click on the "No it wasn't me" button as I don't know where it leads me. So my final and most important question is:

  1. How do I verify this is a legitimate email from Microsoft?

Here is the email: enter image description here

Improve this question
7
  • support.microsoft.com/en-us/account-billing/… : "If you get an email about unusual activity on your Microsoft account, or if you’re worried that someone else might have used your account, go to the Recent activity page."
    – Mokubai
    Commented Apr 29, 2022 at 10:18
  • 2
    If you don't trust an email (you never should unless you are expecting it) then you should go to the source via a different method. That is exactly why major companies have these kinds of systems in place.
    – Mokubai
    Commented Apr 29, 2022 at 10:19
  • 1
    Do you have a dump of the message headers? Most messages are signed, just not using S/MIME or PGP – they're signed using DKIM, with signature validation done at spam filtering stage.
    – grawity_u1686
    Commented Apr 29, 2022 at 10:37
  • Log into your Microsoft account and verify there was online activity from India. Do not click on the link contained in the email. You don’t have to verify if the email is legit. Your email provider has identified it likely wasn’t from Microsoft since it was marked as junk.
    – Ramhound
    Commented Apr 29, 2022 at 12:15
  • As @user1686 states, view the full header to see where the message actually originated.
    – DrMoishe Pippik
    Commented Apr 29, 2022 at 15:53

1 Answer 1

Reset to default
0

As per Mokubai's comment I checked recent activity and indeed there was no login from India. Always interesting to see new phishing tactics.

Improve this answer

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged .