New Office 365 Phishing email

I received a new O365 Phishing email. Take a quick look and see if you can spot all the problems in this mail:

Can you spot the clues?

Here’s some highlighting.

OK:

  1. not from Microsoft..
  2. Bad grammar – “we’ve prevent”,¬† “from been deleted”
  3. Misspellings¬† – “interuption”,”valiate”, “Acitivity”

The clickable link also uses a url shortener to hide that it’s not from MS.

The actual link goes to a page that has been identified as malware, but it could just as easily have been a site that looked like a valid Office 365 login – check the top url (helpwarrior.com is NOT Microsoft).