Recently a client contacted us wanting to know why Microsoft was trying to “bill them direct” for Office 365 when they were paying us for the privilege. Reviewing the email, it was clear that this was a scam/fake that was designed to get your Office 365 username and password as well as your credit card details.

The email was well crafted and for all intents and purposes looks as though it was sent by Microsoft. Naturally, you wouldn’t fall victim, but it never hurts to refresh your memory on some tell tale signs to be on the lookout for

  • Email was from a “” domain, this is the default Office 365 domain and Microsoft don’t send emails from here
  • The email address is a series of [email protected]
  • The link appears legitimate when you look at what is showing in the email but when you hover your mouse over the link its redirecting to a website which they tried to hide
  • Adding of the “This message is from a trusted sender in a green bar” is a nice touch to try and lure you in to thinking its real

So how can you stay safe?

  • Stop and ask someone else if its legitimate like our client did, better to be safe and sure
  • Ensure your systems are patched and up to date, if you’re a managed services client we take care of this for you
  • Engage Cyber Security Awareness Training for you and your staff, talk to us to find out more
  • Have a next generation firewall that’s configured correctly and receiving up to date threat information, those clients that have purchased firewalls from us already talk to us about updating settings to help stop known bad sites
  • Have email security services in place to stop as many of these emails from being received as possible
  • Ensure your systems are backed up and stored offsite preferably in the “cloud” and that they are only accessible by those that need access to them
  • Ultimately you want to have a defence in depth strategy with your protections and ensure there are multiple layers in place like a castle, we are happy to provide a third-party assessment of your system to give you peace of mind that your defences are adequate

Have questions and want to learn more? Go to and sign up for my FREE 17-minute training video that dives deeper into the necessary layers you need to have in place to protect yourself from scam and malicious emails and how to confidently protect your legacy, reputation and family’s livelihood.