Security News > 2022 > July > Outlook email users alerted to suspicious activity from Microsoft-owned IP address
Strange things are afoot in the world of Microsoft email with multiple users reporting unusual sign-in notifications for their Outlook accounts.
While an unusual sign-in activity email should always be treated with suspicion, the twist here is that the IP address at the root of the issue appears to originate within Microsoft itself.
Microsoft's support forums are full of customers confused and a little concerned about the notifications, which look for all the world like either Microsoft or a miscreant with access to one of the company's endpoints is seeking to access their mailbox.
As with many email vendors, Microsoft fires off an Unusual Activity email or text message when it spots a sign-in attempt from a new location or device.
Sometimes Microsoft will up the ante and block the user's sign-in to keep an account safe.
Another user said: "I would like to know why a Microsoft-owned IP is syncing to my Microsoft account, why it is flagged as"suspicious", and why was it able to successfully sync at least once before.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/07/21/outlook_sign_ins/
Related news
- Microsoft fixes Outlook email sending issue for users with many folders (source)
- Microsoft Outlook bug blocks email logins, causes app crashes (source)
- Over 5,000 Fake Microsoft Notifications Fueling Email Compromise Campaigns (source)
- Microsoft Detects Growing Use of File Hosting Services in Business Email Compromise Attacks (source)
- Microsoft Outlook workaround fixes freezes when copying text (source)
- Microsoft Exchange adds warning to emails abusing spoofing flaw (source)
- Microsoft 365 Admin portal abused to send sextortion emails (source)