Ask Dave Taylor
  • Facebook
  • Instagram
  • Linkedin
  • Pinterest
  • Twitter
  • YouTube
  • Home
  • YouTube Videos
  • Top Categories
  • Subscribe via Email
  • Ask A Question
  • Meet Dave
  • Home
  • Outlook & Office 365 Help
  • Do I Really Need to Verify My Office 365 Account?

Do I Really Need to Verify My Office 365 Account?

December 15, 2021 / Dave Taylor / Outlook & Office 365 Help / No Comments

I got an email from someone at my college saying that I have two Office 365 accounts and I need to verify them both or have them cut off? Is this a legit email or is it some sort of scam?

If you’re asking me whether it’s legit, odds are that it isn’t. While scammers can be pretty sneaky, we humans are pretty good at sensing something that doesn’t resonate or make sense given our history of interaction with a group or organization. I’ve also been reading up on scams and apparently one of the most common aspects is the intention to produce an emotional response – typically fear or anxiety – so that you aren’t thinking clearly. A phone call from an unknown number saying that you have a warrant for your arrest? That’s a classic scam.

Another one is to create anxiety through an illogical deadline; you have 24 hours to respond or we’ll have to cut off service! Indeed, that’s exactly what this scam relies on, and make no mistake, it’s a scam. The email I got from an unknown member of the University of Denver, not IT services, threatens that my Office 365 access will be revoked if I don’t respond immediately. Without going any further, that tells me it’s bogus.

But let’s dig into it further.

NOTICE BY ADMIN: VERIFY YOUR OFFICE 365

Here’s the email I received in my University of Denver inbox. At first glance, maybe it’s legit, maybe it isn’t:

verify two office 365 accounts scam phishing attack - email

There are a few things that a close examination reveals, however. First off, who is Emily DeMarco and why is she sending this message to me? Like so many big organizations, DU has its own IT department and all emails have a very specific format and indicate the sender’s credentials. Notice also that the “CLICK HERE” is spaced out to be “CLICK H ERE” to avoid spam filters. “Office 365” isn’t properly capitalized. There are grammatical errors like “two info different logins”.

And there’s that destabilizing time reference to create anxiety: “… to avoid termination of both logins within 24hrs…”. How would one person be able to close accounts at two organizations, even if they were legit? To up the ante, there’s a threat too: “we expect you to strictly adhere and address it.”

If you did click on the link, you’d be moved to a Google Form that looks vaguely legit:

google forms - verify two office 365 accounts scam phishing attack -

Here’s where the grammatical errors are far more rampant; they figure if you’ve clicked, you’re probably hooked and ready to share your account credentials with them. Still, always pay attention, always read closely. Phrases like “We Notices that your office 365…” is never something any professional IT person is going to have on a form of any sort.

Scroll down a bit on this form and the intention becomes all too clear:

google forms - share passwords - office 365 phishing scam

Didja catch the misspelling of “Denver” in the third prompt?

More importantly, NEVER SHARE YOUR PASSWORDS WITH ANYONE. Even a “legit” form.

HOW TO REPORT A GOOGLE FORMS PHISHING SCAM

Instead, I’m going to use the Google Forms utility to report this as a scam, hoping they take it down promptly. That’s done by going to the very bottom of the form, where they warn you to never share your password:

bottom of google forms - report scam

Click on “Report Abuse” and it’s easy to identify what’s going on:

google forms - phishing scam spam reported

Now the ball’s in Google’s court to take down the form and, hopefully, delete the Google account that set it up in the first place.

Meanwhile, now you know that the email you got is not legit and some ways you can identify these scams too. Remember, if nothing else, you can use your organization’s contact form to email someone in IT directly and ask them if it’s legit too! Also, for the record, you can absolutely have as many Office 365 accounts as you need for your work and academic pursuits! Now, be safe out there.

Pro Tip: I’ve been using and writing about Microsoft Office 365 for many years. Please check out my Outlook help library for plenty of useful tutorials, as well as additional Office 365 help pages! Thanks.

Let’s Stay In Touch!

Never miss a single article, review or tutorial here on AskDaveTaylor, sign up for my fun weekly newsletter!
Name: 
Your email address:*
Please enter all required fields
Correct invalid entries
No spam, ever. Promise. Powered by FeedBlitz
Please choose a color:
Starbucks coffee cup I do have a lot to say, and questions of my own for that matter, but first I'd like to say thank you, Dave, for all your helpful information by buying you a cup of coffee!
dupe office 365 accounts, duplicate office accounts, office 365 scam, office phishing attack

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Search

Recent Posts

  • Easy Way to Install Ubuntu Linux on an M1 Mac System?
  • How Can I Check for Firmware Updates on my Vizio TV?
  • How Can I Identify Where A Photo Was Taken on a Mac?
  • Easiest Way to Delete/Unpair My Phone in an INFINITI Vehicle?
  • How Can I Change Desktop Wallpaper on my PC Every Day?

On Our YouTube Channel

Andobil Windshield Sun Shade Umbrella -- DEMO & REVIEW

IFI Audio GO Bar USB-C Headphone Amp -- REVIEW

Categories

  • AdSense, AdWords, and PPC Help (106)
  • Amazon, eBay, and Online Shopping Help, (161)
  • Android Help (196)
  • Apple iPad Help (144)
  • Apple Watch Help (52)
  • Articles, Tutorials, and Reviews (344)
  • Auto Tech Help (11)
  • Business Advice (199)
  • Chrome OS Help (23)
  • Computer & Internet Basics (760)
  • d) None of the Above (165)
  • Facebook Help (383)
  • Google, Chrome & Gmail Help (177)
  • HTML & Web Page Design (245)
  • Instagram Help (47)
  • iPhone & iOS Help (604)
  • iPod & MP3 Player Help (173)
  • Kindle & Nook Help (92)
  • LinkedIn Help (85)
  • Linux Help (164)
  • Linux Shell Script Programming (86)
  • Mac & MacOS Help (890)
  • Most Popular (16)
  • Outlook & Office 365 Help (24)
  • PayPal Help (69)
  • Pinterest Help (53)
  • Reddit Help (17)
  • SEO & Marketing (81)
  • Spam, Scams & Security (92)
  • Trade Show News & Updates (23)
  • Twitter Help (217)
  • Video Game Tips (66)
  • Web Site Traffic Tips (62)
  • Windows PC Help (914)
  • Wordpress Help (204)
  • Writing and Publishing (72)
  • YouTube Help (46)
  • YouTube Video Reviews (159)
  • Zoom, Skype & Video Chat Help (56)

Archives

Social Connections:

Ask Dave Taylor


Follow Me on Pinterest
Follow me on Twitter
Follow me on LinkedIn
Follow me on Instagram


AskDaveTaylor on Facebook



microsoft insider mvp


This web site is for the purpose of disseminating information for educational purposes, free of charge, for the benefit of all visitors. We take great care to provide quality information. However, we do not guarantee, and accept no legal liability whatsoever arising from or connected to, the accuracy, reliability, currency or completeness of any material contained on this site or on any linked site. Further, please note that by submitting a question or comment you're agreeing to our terms of service, which are: you relinquish any subsequent rights of ownership to your material by submitting it on this site. Our lawyer says "Thanks for your cooperation."
© 2022 by Dave Taylor. "Ask Dave Taylor®" is a registered trademark of Intuitive Systems, LLC.
Privacy Policy - Terms and Conditions - Accessibility Policy