Advice Request Is this legit? - microsoftonline.com

Please provide comments and solutions that are helpful to the author of this topic.
www.whois.com

Whois microsoftonline.com

Whois Lookup for microsoftonline.com
www.whois.com www.whois.com
Sadly there is many scam and fraudulent sites and even subdomains, but try use the link I shared and add the specific subdomain in your search. It should be registered to the same owner. Otherwise you can always start doing a bit deeper check. Here's a few tips and links that hope fully might help as a start.
malwaretips.com

Holiday Scam Season Is Here for All Shoppers

The holiday shopping season is in full swing, with Black Friday and Cyber Monday just around the corner, and scammers have been getting ready to cash in from their fraud campaigns. While some fraudsters target the online landscape fooling shoppers with lookalike domains, others focus on...
malwaretips.com malwaretips.com
 
  • Like
  • +Reputation
  • Thanks
Reactions: catjc, plat, Dave Russo and 11 others
It is http only, needless to say more? 🥱

answers.microsoft.com

Microsoftonline.com email accounts Phishing

Recently we have seen an uptick in Phishing attacks from @.microsoftonline.com accounts. These attacks are primarily seeking to gain access to an individuals Microsoft account login
answers.microsoft.com
 
  • Like
  • +Reputation
  • Thanks
Reactions: plat, Dave Russo, Deletedmessiah and 10 others
It’s legit
1608373154076.png
 
Last edited:
  • Like
  • +Reputation
Reactions: Divine_Barakah, plat, Dave Russo and 12 others
What do you guys make of this?

On Visual Capitalist (never heard of it before) you'll find this article:
Where microsoftonline.com is said to be a "phishing scam operating at a large scale".

Found it at:

Also,
 

Attachments

  • top-100-websites-1.jpg
    top-100-websites-1.jpg
    1.4 MB · Views: 512
  • sshot-2020-12-20-00-16-37.png
    sshot-2020-12-20-00-16-37.png
    538.7 KB · Views: 482
  • sshot-2020-12-20-00-22-34.png
    sshot-2020-12-20-00-22-34.png
    91.5 KB · Views: 567
  • Like
  • Thanks
Reactions: Protomartyr, plat, Dave Russo and 3 others
More intriguing news, and something I forgot to mention. The original subdomain I mentioned stopped working just as I posted my questions here.

Today if you go to the mall's website and try the sign-up link for the car prize, you'll be taken to a onmicrosoft.com subdomain. There's a lot of phishing reports about this online, more so than the other domain.

I wonder why.
 
  • Like
Reactions: ForgottenSeer 89360, Protomartyr, plat and 7 others
Jaspion said:
you'll be taken to a onmicrosoft.com subdomain. There's a lot of phishing reports about this online, more so than the other domain.
Click to expand...
It's also legit.
docs.microsoft.com

Domains Frequently Asked Questions

Learn more about domains (onmicrosoft domain and transfer domain) by finding answers to your questions in FAQ.
docs.microsoft.com
 
  • Like
Reactions: ForgottenSeer 89360, Protomartyr, silversurfer and 7 others
2020-12-20-11-48-01.png

docs.microsoft.com

Microsoft Entra Connect: Troubleshoot Microsoft Entra connectivity issues - Microsoft Entra ID

Learn how to troubleshoot connectivity issues with Microsoft Entra Connect.
docs.microsoft.com
Jaspion said:
onmicrosoft.com subdomain. There's a lot of phishing reports about this online, more so than the other domain.

I wonder why.
Click to expand...
onmicrosoft.com is found here.
docs.microsoft.com

Microsoft 365 URLs and IP address ranges - Microsoft 365 Enterprise

Summary: Microsoft 365 requires connectivity to the Internet. The endpoints in this article should be reachable for customers using Microsoft 365 plans, including Government Community Cloud (GCC).
docs.microsoft.com

Jaspion said:
Today if you go to the mall's website and try the sign-up link for the car prize
Click to expand...
The problem here is not the 100% legit Microsoft links. It's the malls website and extra so it's so called webmaster.
 
  • Like
Reactions: ForgottenSeer 89360, Venustus, roger_m and 8 others
upnorth said:
2020-12-20-11-48-01.png

docs.microsoft.com

Microsoft Entra Connect: Troubleshoot Microsoft Entra connectivity issues - Microsoft Entra ID

Learn how to troubleshoot connectivity issues with Microsoft Entra Connect.
docs.microsoft.com

onmicrosoft.com is found here.
docs.microsoft.com

Microsoft 365 URLs and IP address ranges - Microsoft 365 Enterprise

Summary: Microsoft 365 requires connectivity to the Internet. The endpoints in this article should be reachable for customers using Microsoft 365 plans, including Government Community Cloud (GCC).
docs.microsoft.com


The problem here is not the 100% legit Microsoft links. It's the malls website and extra so it's so called webmaster.
Click to expand...
Ok, the mall's website looks like this:

Code: 
https://apiacesso.b2clogin.com/apiacesso.onmicrosoft.com/oauth2/v2.0/authorize?client_id={REDACTED}&response_type=code&redirect_uri=https://plazasulshopping.com.br/usuario/autenticacao&response_mode=query&scope=openid&p=B2C_1A_signup
(client id redacted)

Perhaps not in this case, but could phishing agents be abusing these Microsoft domains?
 
  • Like
Reactions: ForgottenSeer 89360, Venustus, roger_m and 1 other person

You may also like...