I have three emails from "Microsoft account team - *** Email address is removed for privacy ***" that I'm not sure if they're real - copy posted below.

Hello Gail

While in some occasions Microsoft will contact you in regards the security of your account, it is best to make sure the sender domain is from Microsoft.

"If you get an email from Microsoft account team and the email address domain is @accountprotection.microsoft.com, it is safe to trust the message and open it. Microsoft uses this domain to send email notifications about your Microsoft account. These notifications can include security codes for two-step verification and account update information, such as password changes."
The above paragraph is an exact copy of the text you can find in this link: https://support.microsoft.com/en-us/account-bil...

Even then, many users have reported receiving phishing emails with the same sender details, so if you click the "Review recent activity" email link and instead of going to Microsoft to review your account's sign-in activity, you are brought to a fake landing page on a non-Microsoft site that asks you to login, then that's most likely a scam. As has been informed in this website: https://www.bleepingcomputer.com/news/security/beware-of-fake-microsoft-account-unusual-sign-in-activity-emails/ (This link leads to a site outside of Microsoft, and while the information provided may be trustworthy, be cautious about clicking on any additional links or ads that may be present on the page. It is always best to be cautious and do your own research before clicking on unfamiliar links or providing personal information online.).

If you feel your Outlook email has been compromised, there are a few steps you can take to help keep it safe and secure in the future:

1. Change your password: Choose a strong, unique password that is difficult for others to guess. Avoid using personal information or common words in your password, and don't reuse passwords across different accounts.

2. Enable two-factor authentication: This adds an extra layer of security to your account by requiring you to enter a code sent to your phone or email whenever you sign in from a new device.

3. Check your account activity: Review your recent account activity to make sure there are no suspicious logins or changes to your account settings.

4. Update your security information: Make sure your security information, such as your phone number and recovery email address, is up-to-date. This will make it easier to recover your account if it is ever compromised.

5. Be cautious when opening email attachments or clicking on links: Be careful when opening attachments or clicking on links in emails, even if they appear to be from someone you know. Scammers can use these methods to install malware on your computer or steal your personal information.

By following these steps, you can help protect your Outlook email account from being compromised in the future.

Hi Phillip. Thank you for responding to my question.

I just wanted to confirm that these emails came from "Microsoft account team" <*** Email address is removed for privacy *** and just signed "The Microsoft account team". I do not see the @accountprotection.microsoft.com as the email address.

Because I was suspicious, I did run a scan and changed my password as well as check account activity. I also tried to set up the two-step verification, but it stated that the phone number I entered was already on file and I do not have another number to receive texts on.

Should I report the emails as phishing emails? Am I correct in assuming that they are suspicious emails? By not responding to them, I do not want Microsoft Outlook to assume that I am allowing someone from Russia to login to my account.

I appreciate any assistance.

Thank you.

Gail

This is a copy of the email from Microsoft account team (no reply) to You (not directed to my email account or email name)

Microsoft account

Unusual sign-in activity

We detected something unusual about a recent sign-in to the Microsoft account

Sign-in details

Country/region: Russia/Moscow

IP address: 103.225.77.255

Date: Wed, 30 Nov 2022 08:00:04 +0000

Platform: Windows 10

Browser: Firefox

A user from Russia/Moscow just logged into your account from a new device, If this wasn't you, please report the user. If this was you, we'll trust similar activity in the future.

Report This Action

To opt out or change where you receive security notifications, click here.

Thanks,

The Microsoft account team Is this a real warning notice from Microsoft? Thank you.

Is this a real Microsoft alert?

You did good. I've received similar scam notifications. The only sender address that's legit is the one you cited. If it's anything else, it's bogus, no matter how potentially legit it may appear.

I've done all this above and complained to Microsoft but still getting the Russian garbage. It really is astounding why Microsoft cant simply throw everything at tracking down this crook. I've completely lost faith in Microsofts security, just like thousands of others!

*** Email address is removed for privacy ***

I got this reply address from Microsoft telling me my mailbox is full?

I have gotten many of the Russian emails. I really don't want to change my email every time. Am I ok to just delete them?

I replied above. That is not my email address 😞

I received your email 12 30 23 and I changed my password on My Microsoft account on 12 31 23 from my phone. Do I need to change it when I log into my laptop which my phone is linked to or will it change automatically! Please advise what I should do when I sign into my laptop which I haven't done so for quite a while

Hi, This is NOT me!!!