Calling Messages for Domain.com - Spam Warning
We have been seeing this message:
|
From:
|
local wireless user
|
|
Number:
|
(00) 22* 6**-0**
|
|
Date:
|
Thursday March 26, 2020
|
|
Duration:
|
00:40(secs)
|
|
Size:
|
01.6(byte)
|
| |
|
|
(C) 2020 domain.com #voice app.
|
|
The 'Play Record' actually points to: https://t.e.siriusxm.com/r/?id=h53f023bb,36db5c0f,343681f3&p1=cdoipdxd.blob.core.windows.net%2Fxfqa%2FdQl.htmoieyneiuybb2oc47o84hd8hfodW1zLmNvbQ==
Which does a reasonable job of pretending windows.net is compromised, which it is??
Are Microsoft dumping windows.net?
It takes you through to:
https://wwwoutlookofficecdoip99.blob.core.windows.net/vfg3e/newvoicescopedtyowa.html?st=2020-03-26T09%3A30%3A13Z&se=2020-03-27T09%3A30%3A13Z&sp=rl&sv=2018-03-28&sr=b&sig=JqbpHG&tg7gfriwc1B8VVTKDhYamKxZ97ZfTQ%3D#[email protected]
The website is another Office365 fake which attempts to get your login, your email address is already populated in the login screen fields.
Obviously do not enter any credentials, but do report the website and the originating email address.
Stay safe.