Narinukun Posted December 18, 2014 Share Posted December 18, 2014 If you receive one of these, be cautious... It looks like a phishing exercise... It originated from TOT on Chaeng Wattana Road... or so the IP says... Link to comment Share on other sites More sharing options...
MJCM Posted December 18, 2014 Share Posted December 18, 2014 Can you post the headers / technical Info from the Email ? (With your personal Info removed of course) Link to comment Share on other sites More sharing options...
ubonjoe Posted December 18, 2014 Share Posted December 18, 2014 Moved to the computers and internet forum Link to comment Share on other sites More sharing options...
phazey Posted December 18, 2014 Share Posted December 18, 2014 +1 Full message envelope source please. Link to comment Share on other sites More sharing options...
Xircal Posted December 18, 2014 Share Posted December 18, 2014 Microsoft logs the usual IP address webmail originates from. So if your emails are usually sent from Thailand, but you attempt to use the account to send one from Laos for example, then that will generate a warning. The warning will contain the IP address the attempt to login was sent from so you can check that here: http://whatismyipaddress.com/ip-lookup Link to comment Share on other sites More sharing options...
Narinukun Posted December 19, 2014 Author Share Posted December 19, 2014 Can you post the headers / technical Info from the Email ? (With your personal Info removed of course) Unfortunately I have deleted the email... but a colleague has also received several of these as well and I will try and post it here soon. The IP that the email originated from was definitely one of those belonging to TOTisp, Chaeng Wattana...I checked it myself... In the email is a button that asks you to 'Check Past Activity' This then takes you to a page that is definitely NOT Microsoft. Before you can procede to use any of the functionality of the webpage, you have to login with your email name and password... Ergo my assumption that this is a phishing scam... Link to comment Share on other sites More sharing options...
SheungWan Posted December 19, 2014 Share Posted December 19, 2014 Can you post the headers / technical Info from the Email ? (With your personal Info removed of course) Unfortunately I have deleted the email... but a colleague has also received several of these as well and I will try and post it here soon. The IP that the email originated from was definitely one of those belonging to TOTisp, Chaeng Wattana...I checked it myself... In the email is a button that asks you to 'Check Past Activity' This then takes you to a page that is definitely NOT Microsoft. Before you can procede to use any of the functionality of the webpage, you have to login with your email name and password... Ergo my assumption that this is a phishing scam... I would not advise clicking any button within a suspicious email. 1 Link to comment Share on other sites More sharing options...
Chicog Posted December 19, 2014 Share Posted December 19, 2014 Can you post the headers / technical Info from the Email ? (With your personal Info removed of course) Unfortunately I have deleted the email... but a colleague has also received several of these as well and I will try and post it here soon. The IP that the email originated from was definitely one of those belonging to TOTisp, Chaeng Wattana...I checked it myself... In the email is a button that asks you to 'Check Past Activity' This then takes you to a page that is definitely NOT Microsoft. Before you can procede to use any of the functionality of the webpage, you have to login with your email name and password... Ergo my assumption that this is a phishing scam... In future don't click the button, it could well be the trigger for an infection. Just hover the mouse over it to see the exact URL. And yes, it does sound suspicious - did it prompt you for your login credentials? Link to comment Share on other sites More sharing options...
inzman Posted December 19, 2014 Share Posted December 19, 2014 Never ever click a link in an email. If you need to check your email or bank info, type in the website yourself. Banks never ask you to click a link, it's for your own protection. Very basic old scam. Link to comment Share on other sites More sharing options...
phazey Posted December 19, 2014 Share Posted December 19, 2014 Recommend a malware scan. Link to comment Share on other sites More sharing options...
IMHO Posted December 19, 2014 Share Posted December 19, 2014 Even if it did originate from Hotmail themselves, be cautious - your Mrs/GF is probably onto you Link to comment Share on other sites More sharing options...
paulchiangmai Posted December 19, 2014 Share Posted December 19, 2014 I have a similar message from Microsoft, they are telling me that they think someone has hacked into my account and they ask me to fill in details of my account, I have not clicked on anything as although I am a computer dummy I smell a rat. I still have the message in my in box. Link to comment Share on other sites More sharing options...
biplanebluey Posted December 19, 2014 Share Posted December 19, 2014 (edited) I have a similar message from Microsoft, they are telling me that they think someone has hacked into my account and they ask me to fill in details of my account, I have not clicked on anything as although I am a computer dummy I smell a rat. I still have the message in my in box. Why don't you just delete or spam it.I do this to any mail that comes from an unusual source.It may not be doing any harm but it still worries me leaving it in my mail box .Anyway if you are not going to open it ,why hang on to it Edited December 19, 2014 by biplanebluey Link to comment Share on other sites More sharing options...
Bench499d Posted December 21, 2014 Share Posted December 21, 2014 I have a similar message from Microsoft, they are telling me that they think someone has hacked into my account and they ask me to fill in details of my account, I have not clicked on anything as although I am a computer dummy I smell a rat. I still have the message in my in box. To be on the safe side, you should log into your account the usual way and change your password, if you are in any doubt. It's unlikely to be genuine, but changing your password won't do any harm. Link to comment Share on other sites More sharing options...
wpcoe Posted December 24, 2014 Share Posted December 24, 2014 Actually, I think those messages may be legit if you use an e-mail client and are accessing a hotmail.com or outlook.com e-mail account from a new location and/or different ISP. I just took a three-week trip overseas, and every time I logged on from a new location I got one of those e-mails when trying to download messages with Thunderbird: I think this is a new security measure from Microsoft, but it sure is annoying when you're on the road. After you get such a message, if you go to your browser to log on to your Hotmail/Outlook.com account manually, then you don't get further messages for the most recent location. Move to a new location, even such as going to a friend's house and using their WiFi, and you'll be blocked from downloading messages until you manually log on via a browser. The URL for the "Review recent activity" link in a valid Microsoft message should read: https://account.live.com/activity. However, it won't be long until spammers/hackers start spoofing that message, so I recommend not using the link. Just go manually to hotmail.com or outlook.com and display your inbox, then log off. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now