Reddit Scam Pattern
Business email compromise leading to Microsoft credential harvest
3 reports · first seen 1 May 2026 · last seen 2 May 2026
Scammers send invoice or document-sharing emails from hacked legitimate business accounts, directing recipients to fake Microsoft Outlook login pages. Victims enter credentials believing they are accessing genuine shared files or receipts.
How the scam works
Compromised business email accounts deliver phishing links to fake Microsoft sign-in pages for credential capture.
Brands impersonated
Member posts on Reddit (3)
- What are signs this is a phishing attempt?
User asks for help identifying phishing indicators in a Dropbox-branded email, noting the official address lends false legitimacy.
reddit · 1 May 2026 · informational
- Fell for phishing attempt AGAIN
A victim clicked a link in a spoofed invoice email and entered their Outlook credentials on a convincing but fake sign-in page before realising the deception.
reddit · 27 Apr 2026 · phishing
- Help after clicking on link and entering login details
Victim clicked a document link from a known company's hacked email account, entered Microsoft login credentials on a fake Outlook page.
reddit · 28 Apr 2026 · phishing