Breaking 16:32 Apple explores AI chip acquisitions to strengthen its artificial intelligence infrastructure 14:14 Commemorative Trump dollar coin sparks legal debate ahead of America's 250th anniversary 13:15 Trump defends his first-term economy and Covid-19 response amid renewed debate 13:00 JPMorgan nears historic $1 trillion market valuation 12:42 New York Times challenges Trump administration subpoenas in press freedom dispute 11:44 Musk and Altman reignite AI rivalry amid legal and industry tensions 11:11 US strategic petroleum reserve falls to lowest level since 1983 10:42 Democratic lawmakers show growing support for ending US military aid to Israel 10:21 US defense secretary orders annual testosterone screening for troops over 30 10:05 Iran threatens regional infrastructure after renewed tensions with the United States 09:31 United States imposes travel restrictions amid Ebola outbreak in the Democratic Republic of the Congo 09:01 US imposes 25% tariffs on selected Brazilian imports as trade tensions escalate 08:18 Anthropic’s latest AI advertisement sparks debate over its dark message 19:38 Trump suggests possible Syrian role against Hezbollah, drawing criticism of Israel’s strategy 19:00 UN human rights chief warns renewed U.S.-Iran conflict threatens regional stability 18:39 Pentagon faces higher projected costs for military operations involving Iran 18:30 Chipotle opens first restaurant in Mexico as U.S. burrito chain expands internationally 18:18 Startup plans first space mirror to deliver sunlight on demand, raising scientific concerns

Scammers send phishing emails from official Microsoft address

Friday 22 May 2026 - 08:31
By: Dakir Madiha
Scammers send phishing emails from official Microsoft address

Phishing operators have exploited a vulnerability in Microsoft’s email notification systems to send fraudulent messages from a legitimate internal address used for security alerts and authentication codes. The abuse involves the address msonlineservicesteam@microsoftonline.com, which normally delivers two-factor authentication codes and account notifications to hundreds of millions of users worldwide. The misuse gives attackers a powerful way to bypass user suspicion by appearing as trusted system communication.

The attack appears to rely on creating or compromising Microsoft accounts and leveraging them to trigger automated system emails that carry fraudulent content. In some cases, attackers replicate security alerts warning of unauthorized transactions. In others, messages direct users to external links embedded in the email body. Because the messages originate from a legitimate Microsoft-controlled infrastructure, they often pass basic authentication checks and appear authentic to recipients.

Security researchers have also documented related techniques involving Microsoft’s identity management system, where attackers manipulate tenant configuration fields to inject deceptive text into automated notifications. This method can alter subject lines and message content in system-generated emails, including fake purchase confirmations or cryptocurrency-related alerts. The result is a hybrid form of phishing where legitimate infrastructure is used to generate convincing fraudulent communications at scale.

A cybersecurity monitoring group has reported that the same Microsoft notification address has been abused for months to distribute spam and phishing messages. The group has flagged the issue to Microsoft and warned that such levels of customization in automated notification systems create structural risks for abuse. Microsoft has acknowledged inquiries but has not publicly detailed corrective measures. The incident reflects a broader trend in which attackers increasingly target trusted enterprise communication systems rather than relying on external spoofed domains. Users are advised to avoid clicking links in unexpected security emails and to verify account activity directly through official platforms.


  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.