Outlook “mail issues” phishing – don’t fall for this scam!

Apart from some slightly clumsy wording (but when was the last time you received an email about a technical matter that was plainly written in perfect English?) and a tiny error of grammar, we thought it was surprisingly believable and worth writing up on that account, to remind you how modern phishers are presenting themselves.

Out are the implied threats, the exclamation points (!!!) and the money ($$$) you might lose if you don’t act right now; in are the happy and unexceptionable “here’s a problem that you can fix all by yourself without waiting for IT to help you” messages of a sort that many companies are using these days to reduce support queuing times.

Yes, you ought to be suspicious of emails like this. No, you shouldn’t click through even out of interest. No, should never enter your email password in circumstances like this.

But the low-key style of this particular scam caught our eye, making it the sort of message that even a well-informed user might fall for, especially at the end of a busy day, or at the very start of the day after.

Here’s how it arrives – note that in the sample we examined here, the crooks had rigged up the email content so that it seemed to be an automated message from the recipient’s own account, which fits with the theme of an automatic delivery error:

I​n​c​o​m​i​n​g​ ​m​e​s​s​a​g​e​s​ ​f​o​r​ [REDACTED] c​o​u​l​d​n​’​t​ ​b​e d​e​l​i​v​e​r​e​d​.

This message was sent in response to multiple incoming messages being rejected consistently from 2:00 AM, Wednesday, August 19, 2020.

To fix, recover and prevent further rejection of emails by our server, connect to your Company-Assigned OWA portal securely below.

Only if you were to dig into the email headers would it be obvious that this message actually arrived from outside and was not generated automatically by your own email system at all.

The clickable link is perfectly believable, because the part we’ve redacted above (between the text https://portal and the trailing /owa, short for Outlook Web App) will be your company’s domain name.

But even though the blue text of the link itself looks like a URL, it isn’t actually the URL that you will visit if you click it.

For the full article: https://nakedsecurity.sophos.com/2020/08/21/outlook-mail-issues-phishing-dont-fall-for-this-scam/

Get In Touch

Share On Social Media

Other Recent Blog Articles

The Tariff Tango: How Import Taxes Can Impact Your Computer Gear

April 22, 2025

In today’s interconnected world, the price tag on your laptop, monitor, or even that trusty keyboard often reflects a global journey of components and assembly. But what happens when governments…

Read More

From Stumptown to Secure Town: Tech Protection for Portland Small Businesses

April 22, 2025

As a small business owner in the vibrant Portland metro area, you’re likely juggling a million things. From serving your customers to managing your team and keeping a close eye…

Read More

The Perils of Public Wi-Fi: Are You Browsing Dangerously? (And How a VPN Can Be Your Digital Shield)

April 18, 2025

That free Wi-Fi at the coffee shop, the airport, or even your hotel might seem like a convenient way to stay connected. But beneath that welcoming signal lies a potential…

Read More