SOCHQ Threat Intel · Scam

Fake Document Signing Page Steals Microsoft Login Credentials

Scammers have set up a fake website disguised as a document signing service to steal Microsoft account usernames and passwords. If anyone in your family clicks a link to this site and enters their login details, attackers could gain access to email, OneDrive files, and other Microsoft services.

What to do: If you or your child receives an unexpected email or message asking you to review or sign a document via an unfamiliar link, do not click it — go directly to the official service's website instead, and report the message as phishing.

Source: paste_monitor ↗

What this means for your family

If someone in your family gets an email asking them to sign a document through a link, that link might be fake and designed to steal their Microsoft password. Once scammers have that password, they can read all your emails, access family photos on OneDrive, and potentially lock you out of your accounts. Always type the website address directly into your browser instead of clicking links in unexpected messages.

Related: Microsoft Azure AD

More threats like this

Dangerous Fake Website Confirmed Active Dangerous fake website confirmed stealing personal info Fake Sign-In Page Stealing Passwords Fake website stealing personal info confirmed active Dangerous Fake Website Confirmed Active

Every business has a security team. Your family can too.

SOCHQ watches your home network for scams, breaches, and threats like this — and tells you in plain language what to do.

See how SOCHQ Family works Check your family's safety →

This page is general safety guidance, not individualized security advice. When in doubt, go directly to the official source.