New email scam discovered.

According to information from the Information Security Department, Vsevolod Kokorin, a cybersecurity expert, has issued a warning about a highly sophisticated scam targeting Microsoft's email system.

Specifically, this person discovered a vulnerability that made emails from scammers harder to detect.

According to Kokorin, the scammers impersonated emails sent from Microsoft by using email addresses ending in “@microsoft.com”. In a post on his personal page, Kokorin mentioned receiving an email from security@microsoft.com – an email address supposedly belonging to Microsoft's security department.

At first glance, this appears to be a legitimate email address; these emails are often sent with content urging users to enhance the security of their devices by clicking on an attached link.

In reality, these are links to websites containing malicious code, allowing scammers to gain control of the device and steal the victim's data and information.

Kokorin said he reported the issue to Microsoft, and the company acknowledged the problem and said it was working to fix any remaining vulnerabilities in the system.

Given the current state of fraud, the Cybersecurity Department advises email users to be highly vigilant. Absolutely do not click on suspicious links, and do not provide personal information to websites of unknown origin. When receiving fraudulent messages like the ones described above, users should verify the sender's identity by contacting the company they represent via their official phone number or website.