Scammers are using Microsoft internal accounts to send spam links.

It has been discovered that scammers are sending emails containing spam links, disguised to look like they were sent from Microsoft.

Scammers are abusing an internal Microsoft account to send spam links | TechCrunch
https://techcrunch.com/2026/05/21/scammers-are-abusing-an-internal-microsoft-account-to-send-spam/

According to Zach Whitaker, a security expert editor at the news site TechCrunch, since May 2026, similar poorly made emails containing links to fraudulent websites have been arriving. All of these emails were sent from the address ' msonlineservicesteam@microsoftonline[.]com '.

This address is used by Microsoft to send users two-factor authentication codes and important notifications about their online accounts, but Whitaker received spam such as warnings about fraudulent transactions and requests to verify the address with a code sent because a private message had arrived at funnow[.]xyz.


According to The Spamhaus Project, which works to combat spam, these suspicious spam messages have been sent for several months and have been reported to Microsoft.


According to Whitaker, a Microsoft spokesperson commented, 'To protect our customers, we are actively investigating reports of a series of phishing incidents and taking countermeasures. These countermeasures include strengthening our detection and blocking capabilities, as well as deleting accounts that violate our terms of service.'

While Whitaker's investigation focused on spam using Microsoft's internal accounts, spam using other companies' accounts has also been observed on social media, suggesting this problem is not limited to Microsoft. Regardless of whether the email sender is an official account like Microsoft's, please exercise extreme caution when opening links in emails.