‘A third party knows your password’ email from Microsoft Security

A third party knows your password microsoft security

Microsft email and tech support scams are some of the most common scams on the internet. Scammers often masquerade as Microsoft in order to trick victims into thinking their personal information or computer is compromised. The purpose of these scams is to obtain personal information or money by causing fear, panic, or anxiety.

One of the latest Microsoft scams is an email scam where scammers pretend to be Microsoft Security. The scammers send an email message that appears to be sent from Microsoft Security and says ‘A third party knows your password’ as the subject. The email message claims that someone used your password to try and sign in to your account via a mobile device. It then says that they blocked the connection attempt and requests that you reply to the email if you want more details and information.

Here’s an example of the email message:

A third party knows your password.

Microsoft Security <Admin.1knf56@microsoft.com>
Sat 1/19/2019, 2:55 PM
To

Hello [Your email address]

Someone just used your password to try and sign in to your account via a mobile device.

Details:
19 January 2019, 06:36 AM
United States *

We have blocked the connection attempt, reply to us if you want more details and information

Microsoft Accounts team

© 2019 Microsoft Corporation, One Microsoft Way, Redmond, WA 98052

The purpose of this particular email scam is to provoke you to reply to the email message. If you reply, the scammer may suggest that you visit a website, download malicious software, or perform some other task that puts you in harm’s way.

Do not reply to the email message because, in reality, no one attempted to sign in to your Microsoft account; However, I recommend that you change all of your passwords including your Microsoft accounts password to ensure your privacy and safety.

These are some best practices to consider for maintaining a secure password:

  • Do not reuse the same password for multiple accounts. Use unique passwords wherever possible.
  • Use strong passwords with numbers, letters, and special characters such as !@$#.
  • Use two-factor authentication to add an extra layer of security along with your password.
  • Use a reputable password manager if you have trouble remembering multiple passwords.

Sean Doyle

Sean Doyle is a tech author and engineer with over 20 years of experience in cybersecurity, privacy, malware, Google Analytics, online marketing, and other topics. Sean's content has been featured in numerous publications.