Brand Impersonation Intelligence

Fake Microsoft Websites

10 domains flagged by threat-intelligence feeds for impersonating Microsoft. Most recent listing: May 17, 2026.

10
Flagged Domains
34
Avg Risk Score
May 17
Last Flagged

Domains Impersonating Microsoft

10 shown
Domain Last Seen
microsoft-1ogin.duckdns.org May 17 microsoft365xx1.iceiy.com May 17 microsoft.account.trustedentity.com May 13 microsoft.authorised-support.com May 13 microsoftquarantine.authorised-support.com May 12 login-microsoftoffice365online.tomstapledon.com May 5 verificarmicuentaa-microsoft2o26.zya.me Apr 30 microsoft-clone.vercel.app Apr 29 microsoft.design Feb 28 documentos.microsoft-waresystems.com Feb 28

How to spot a fake Microsoft site

  • Check the domain against Microsoft's official address. Look-alike domains add extra words, hyphens, or unusual extensions.
  • Never log in via a link from an email or text. Navigate to the official site directly.
  • Use a password manager — it will not autofill your Microsoft credentials on a look-alike domain.

Frequently Asked Questions

How do I tell a real Microsoft website from a fake one?

Always check the domain in the address bar against Microsoft's official domain. Impersonation sites use look-alike domains (extra words, hyphens, or unusual extensions). Never enter your Microsoft login or payment details on a site you reached from an email or text link — navigate to the official site directly instead.

I entered my Microsoft details on one of these sites. What should I do?

Change your Microsoft password immediately from a device you trust, and change it anywhere you reused it. Enable two-factor authentication. If you entered card or banking details, contact your bank to freeze or reissue the card, and watch your statements for unauthorized charges.

How are these domains identified as impersonating Microsoft?

Each domain on this page was flagged by an upstream threat-intelligence source (URLhaus, OpenPhish, or PhishTank) and contains a Microsoft brand reference in a non-official domain, or was reported by that feed as targeting Microsoft. See our methodology page for full detail.

How do I report a fake Microsoft website?

Report phishing sites to the Anti-Phishing Working Group at reportphishing@apwg.org, to Google Safe Browsing, and to Microsoft's official abuse channel. You can also submit it on RecentScam using the Report button.

🔐Security Partner

Stop the next phishing attack before you click.

NordPass autofill only triggers on real domains. Fake login pages cannot trick it into entering your credentials.

Try NordPass →
← All impersonated brands