SOCHQ Threat Intel · Scam

Fake Microsoft Login Page Stealing Passwords

Scammers have set up a fake Microsoft sign-in page designed to steal email usernames and passwords. If anyone in your family clicks a link to this site and enters their details, their Microsoft account could be hijacked.

What to do: Warn your family never to click login links in emails or messages — always go directly to microsoft.com by typing it in the browser, and enable two-factor authentication on all Microsoft accounts.

Source: paste_monitor ↗

What this means for your family

If someone in your family gets an email or text asking them to "verify" their Microsoft account by clicking a link, that's likely a scam designed to steal their password. Once a scammer has that password, they can access email, OneDrive files, and other connected accounts. The safest habit is to always type microsoft.com directly into your browser instead of clicking links, and turn on two-factor authentication so even a stolen password can't unlock the account.

Related: Microsoft

More threats like this

Dangerous Fake Website Confirmed Active Dangerous fake website confirmed stealing personal info Fake Sign-In Page Stealing Passwords Fake website stealing personal info confirmed active Dangerous Fake Website Confirmed Active

Every business has a security team. Your family can too.

SOCHQ watches your home network for scams, breaches, and threats like this — and tells you in plain language what to do.

See how SOCHQ Family works Check your family's safety →

This page is general safety guidance, not individualized security advice. When in doubt, go directly to the official source.