Security News > 2022 > July > Outlook email users alerted to suspicious activity from Microsoft-owned IP address

Strange things are afoot in the world of Microsoft email with multiple users reporting unusual sign-in notifications for their Outlook accounts.
While an unusual sign-in activity email should always be treated with suspicion, the twist here is that the IP address at the root of the issue appears to originate within Microsoft itself.
Microsoft's support forums are full of customers confused and a little concerned about the notifications, which look for all the world like either Microsoft or a miscreant with access to one of the company's endpoints is seeking to access their mailbox.
As with many email vendors, Microsoft fires off an Unusual Activity email or text message when it spots a sign-in attempt from a new location or device.
Sometimes Microsoft will up the ante and block the user's sign-in to keep an account safe.
Another user said: "I would like to know why a Microsoft-owned IP is syncing to my Microsoft account, why it is flagged as"suspicious", and why was it able to successfully sync at least once before.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/07/21/outlook_sign_ins/
Related news
- Windows 10 KB5051974 update force installs new Microsoft Outlook app (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Microsoft fixes Outlook drag-and-drop broken by Windows updates (source)
- Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails (source)
- Microsoft says button to restore classic Outlook is broken (source)
- Microsoft Exchange Online outage affects Outlook web users (source)
- Microsoft: Exchange Online bug mistakenly quarantines user emails (source)
- Microsoft fixes button that restores classic Outlook client (source)
- Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)