Possible phishing?
I recently received an email claiming to be from Microsoft and, asking me if I had uop in a request to change my password on my account. It gives two options and on each one it is requiring that I copy and paste a URL into my browser. I have not followed either of these links. I still have the email if needed. Is this a common request as I have not put in for a password reset?Below is a copy of the email I received.Hello, ******** We received your request to reset your Windows Live password. To confirm your request and reset your password, follow the instructions below. Confirming your request helps prevent unauthorized access to your account. If you didn't request that your password be reset, please follow the instructions below to cancel your request. CONFIRM REQUEST AND RESET PASSWORD 1. Copy the following web address: https://accountservices.msn.com/EmailPage.srf?emailid=dcd4154356092d44&ed=CQhyIc92dcLi2Ut%2B/zVPAIwxdPzxsGEsVdjm13r4Se4RlcY4lSFIH4TQc8GQ&lc=1033&urlnum=0 IMPORTANT: Because fraudulent ("phishing") e-mail often uses misleading links, Microsoft recommends that you do not click links in e-mail, but instead copy and paste them into your browsers, as described above. 2. Open your web browser, paste the link in the address bar, and then press ENTER. 3. Follow the instructions on the web page that opens. CANCEL PASSWORD RESET 1. Copy the following web address. https://accountservices.msn.com/EmailPage.srf?emailid=dcd4154356092d44&ed=CQhyIc92dcLi2Ut%2B/zVPAIwxdPzxsGEsVdjm13r4Se4RlcY4lSFIH4TQc8GQ&lc=1033&urlnum=1 IMPORTANT: Because fraudulent ("phishing") e-mail often uses misleading links, Microsoft recommends that you do not click links in e-mail, but instead copy and paste them into your browsers, as described above. 2. Open your web browser, paste the link in the address bar, and then press ENTER. 3. Follow the instructions on the web page that opens. OTHER INFORMATION Windows Live is committed to protecting your privacy. We encourage you to review our privacy statement Privacy Statement at http://g.msn.com/2privacy/enus. For more information, go to the Windows Live Account site at https://account.live.com. Thank you, Windows Live Team NOTE: Please do not reply to this message, which was sent from an unmonitored e-mail address. Mail sent to this address cannot be answered. 1 person needs an answerI do too
June 30th, 2010 10:39am

These links are for Microsoft if it is exact link as its name , otherwise it is phishing.It is possible that someone else try to find out your password and request a password recovery , delete this message if you don't request for reset your password.That person could NOT find your password , don't worry.
Free Windows Admin Tool Kit Click here and download it now
June 30th, 2010 7:35pm

These links are for Microsoft if it is exact link as its name , otherwise it is phishing.It is possible that someone else try to find out your password and request a password recovery , delete this message if you don't request for reset your password.That person could NOT find your password , don't worry.Hi Cyber,I think the OP copied the Text but not the HTML source code which the real links embedded to access the phishing site(s) which will have the Live.com or msn.com Image as background to fool the users to believe it is Live.com/msn.com website.Why the Op need to Cancel if he didn't ask for it, this looks like to un-subscribe please follow the instructions on the links below then you will be sold over again and again!If the OP need to change His/Her password either by opening their Hotmail account or log into msn.com and change it from there.This is my 2$ nass -- http://www.nasstec.co.uk
June 30th, 2010 10:48pm

Thank you for your response, I am agree with you, as I said if they are exact link as its name , what I mean was that HTML hyber-link is same as the link itself. Anyway as you said and I recommended user should delete this message if NOT request for reset password.
Free Windows Admin Tool Kit Click here and download it now
July 1st, 2010 7:49am

Is this a common request as I have not put in for a password reset?The email you posted looks ok, but I would be extremely leery of unsolicited emails. It is oftenvery hard to distinguish phishing emails from the real thing, but there are a few things you can do to protect yourself and others: Get an AntiVirus Solution that installs a site inspector toolbar into your browser such as ZoneAlarm Antivirus [1] or Norton Internet Security.Use an online email provider that scans your incoming email for potential risks. My gmail account once detected what appeared to be a phishing email and put a big red banner all over it to warn me. I suspect Microsoft Hotmail would do the same, but I don't know since I am not currently using Hotmail. If you get an unsolicited email, always try to contact the person though an independent source that you know is good. For example, if you get an unsolicited email stating that your credit card has experienced abnormal activity, don't use any of the contact information in the email. Instead, go find your card and call the number on the back of your credit card to verify the activity. You know the phone number on the back of your credit card is good. If you have reason to suspect your have received SPAM you should report it to your ISP and forward it to spam@uce.govIf you have reason to believe you have received a Phishing email (much more serious than spam) you can report it to phishing-report@us-cert.gov. Please don't send spam reports to this CERT address.Get identity theft protection. It's cheap and it helps a little. Lastly, you can find additional information here:http://www.us-cert.gov/nav/report_phishing.html[1] - Note: I use the ZoneAlarm Antivirus Site Inspector Toolbar but it can be a bit slow for some websites.
July 2nd, 2010 6:32am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics