No, it’s not phishing, it’s legit, the header match with google and the link goes to https://accounts.google.com/AccountChooser/signinchooser?continue=https%3A%2F%2Fadmin.google.com%2Fac%2Fac%2Falert%2Fdetails%3FalertId%3D3…
Why not just write the message there instead of letting me login to watch the important notification???
It’s also annoying that Microsoft sends links via sms using a really scratchy looking domain (aka.ms). Turns out they’re legit
But there are so many dodgy similar looking ones that auto complete if you’re typing it.
I went to type in the aka.ms to find a bit locker recovery key. And didn’t realise it autocorrected to something like akam.ms and it was a super sketchy site about bit locker recovery. Luckily I realised straight away even MS wouldn’t host a website like the one I saw.
Link shorteners are the worst.
I had to make a police report yesterday, and they wanted me to upload evidence. The (text) message they sent was along the lines of: “A. Last name requests evidence from you. Click here to submit evidence. vp.au/evidence”
vp[.]au seems to be sketchy, just blank + sketchy js running
dear sirs, please submit the evidences to do the needful, very thanks.
They got the
.microsoft
TLD a while back specifically for this purpose. Supposedly they want to migrate all their cloud services there, but I learned about that a year ago and I’ve only seen it in use once since (IIRC on Loop…)And let’s not forget about facebookmail.com, the official mail server for Facebook login notifications since 2004.
The tech is here, the risks are enormous, but the corpos don’t care because they don’t bear the costs of phishing attacks and governments are too impotent to enforce minimum standards of cybersecurity.
Their latest iteration of Teams runs on https://teams.cloud.microsoft.
went to that link, “Oops, app failed to init!”, considering that this is public-facing, that is a very bad error message
i write better error messages than fekking MICROSOFT
maybe it’s supposed to be really rare, but i just visited the site
edit: turns out DARK READER broke it!!!