There have been a growing number of reports about a phishing attack in Microsoft Office 365 that is attempting to steal log in credentials through a fake non-delivery message. It will state that “Microsoft found Several Undelivered Messages” and prompt the user to send them again. When the user clicks ‘Send Again’ it will take them to a phishing site that looks very similar to the real Office 365 login.  The email address will auto populate and prompt for the password to be enter.  At this point it will send your login information to the hackers and redirect you to the real Office 365 account.

Please be aware of any unexpected emails which could be attempts to obtain login information and take a few steps before opening emails, attachments, or links. Always verify the website you are on *before* entering *any* credentials!

Were you expecting the email? If not, can you verify the email was sent by the sender?

Note the sender’s email address? Is it one you are familiar with and does it match the name displayed?

Does it contain repetitive grammar mistakes or any obvious poor spelling and punctuation?

Hover (do not click) over any links and check the address is correct; these are usually displayed in the bottom left corner when hovering over a link.

Below you can see the difference between a legitimate and fake Office 365 delivery failure notification.  If you have any questions or concerns about a potential fake email feel free to give one of our locations a call.

Fake Office 365 non-Delivery Notification
Real Office 365 Non-Delivery Notification