May 23, 2026
You've got scam mail
Scammers are abusing an internal Microsoft account to send spam links
Even readers are asking if anyone can tell what a real Microsoft email even looks like
TLDR: Scammers have been abusing a real Microsoft alert address to send phishing emails, and Microsoft says it’s still investigating. Readers are furious and confused, with many saying this proves normal people can’t rely on “check the sender” advice when trusted company emails themselves look compromised.
Microsoft has a very embarrassing inbox problem: scammers have reportedly been sending junk and phishing links from an internal Microsoft address that people normally trust for login codes and account alerts. That’s the scary part. The even messier part? The community reaction was basically: “Wait, how are we supposed to know what’s real anymore?” One commenter flat-out wondered whether other mail companies now have to punish all Microsoft mail because one official-looking address is acting cursed. Another immediately pulled PayPal into the chaos, saying they’ve seen the same kind of thing there too. Suddenly the vibe shifted from “Microsoft mistake” to “is the whole internet’s trust system held together by duct tape?”
The hottest take came from readers roasting Microsoft’s branding maze. One person joked that even Microsoft may not know all the domains it owns, which hit a nerve because companies constantly tell users to “check the sender address” as if that solves everything. If the address really is a genuine Microsoft-owned one, commenters say that advice starts sounding like comedy. Others piled on with horror stories from Booking-style messages and sketchy hotel alerts, painting a bigger picture: scammers aren’t just faking logos anymore, they’re sneaking in through the same channels companies use for real notifications. Spamhaus says the abuse has been going on for months, Microsoft says it’s investigating, and the crowd’s reaction is a mix of panic, eye-rolling, and “great, now every inbox alert feels like a hostage note.”
Key Points
- •Scammers have reportedly abused a loophole for months to send phishing-style emails from a legitimate Microsoft account notification address.
- •TechCrunch said it received multiple suspicious emails from msonlineservicesteam@microsoftonline.com across different accounts.
- •The Spamhaus Project said it had observed the same abuse for several months and had notified Microsoft.
- •Microsoft said after publication that it was investigating the phishing reports, strengthening detection and blocking systems, and removing violating accounts.
- •The article compares the incident with earlier notification-system abuse cases involving Betterment and Namecheap.