--- title: "Compromised Microsoft Credentials is Code for They Got Phished | Phish Protection" description: "If you haven" image: "https://phishprotection.com/og/blog/compromised-microsoft-credentials-code-phished.png" canonical: "https://phishprotection.com/blog/compromised-microsoft-credentials-code-phished/" --- Quick Answer If you haven't already heard,\[ Hackers compromised Microsoft support agent’s credentials to access customer email accounts\](https://techcrunch.com/2019/04/13/microsoft-support-agent-email-hack/), according to an article on TechCrunch. The article states that "Microsoft has confirmed to TechCrunch that a certain limited number of people who use web email services managed by Microsoft - which cover \_services like @msn.com and @hotmail.com - had their accounts compromised\_." Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcompromised-microsoft-credentials-code-phished%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Compromised%20Microsoft%20Credentials%20is%20Code%20for%20They%20Got%20Phished&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcompromised-microsoft-credentials-code-phished%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcompromised-microsoft-credentials-code-phished%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcompromised-microsoft-credentials-code-phished%2F&title=Compromised%20Microsoft%20Credentials%20is%20Code%20for%20They%20Got%20Phished "Share on Reddit") [ ](mailto:?subject=Compromised%20Microsoft%20Credentials%20is%20Code%20for%20They%20Got%20Phished&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcompromised-microsoft-credentials-code-phished%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2019/04/phishing-protection-5796.jpg) If you haven’t already heard,[ Hackers compromised Microsoft support agent’s credentials to access customer email accounts](https://techcrunch.com/2019/04/13/microsoft-support-agent-email-hack/), according to an article on TechCrunch. The article states that “Microsoft has confirmed to TechCrunch that a certain limited number of people who use web email services managed by Microsoft - which cover _services like @msn.com and @hotmail.com - had their accounts compromised_.” “We addressed this scheme, which affected a limited subset of consumer accounts, by disabling the compromised credentials and blocking the perpetrators’ access,” said a Microsoft spokesperson in an email. The article goes on to say that Microsoft has not explained how the credentials got compromised. There’s this one term you almost always hear with a successful cyber-attack of any kind: _compromised credentials_. > Do know what compromised credentials means? It’s code for they got phished. How else do credentials get compromised? Most credentials are compromised because some other credentials were compromised first. Sure enough, according to[ an article on Vice.com](https://motherboard.vice.com/en%5Fus/article/ywyz3x/hackers-could-read-your-hotmail-msn-outlook-microsoft-customer-support?utm%5Fsource=reddit.com), “the Microsoft support account used belonged to a high privileged user, meaning they likely have more access to material than other employees.” _The reason Microsoft hasn’t explained how it happened is they don’t want to cop to the fact that they got phished_. After all, that could be a big security hit to their reputation. Ironically, Microsoft cautioned its users that they might get more **phishing emails** as the result of the breach. ![Phishing protection](https://media.mailhop.org/phishprotection/images/2019/04/phishing-protection-5796.jpg) “You should be careful when receiving any e-mails from any misleading domain name, any e-mail that requests personal information or payment, or any unsolicited request from an untrusted source,” the company said. Too bad they don’t take their own advice. You would think that after[ 773 million emails and tens of millions of passwords got leaked in January](https://www.wired.com/story/collection-one-breach-email-accounts-passwords/), Microsoft would be a little more vigilant about security in general and [phishing protection](/) in particular. It’s not like they don’t know that[ phishing is responsible for 70-90% of all successful malicious data breaches](https://www.knowbe4.com/hubfs/KB4-HackingEmailv.FINAL.pdf). And it’s not like the technology to **[prevent phishing](/content/phishing-prevention/) attacks** doesn’t exist or even costs a lot to implement. Small businesses with up to 100 employees can protect them all with[ cloud-based phishing protection](/) for less than 50 bucks a month. What’s keeping Microsoft and other large companies from doing the same? Maybe they just like using the term _compromised credentials_. ## Topics [ Phishing ](/tags/phishing/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Foundational 5m 0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[ Foundational 4m 13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[ Foundational 4m All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[ Foundational 4m 2021 Phishing Trends You Need To Be Wary Of Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Compromised Microsoft Credentials is Code for They Got Phished","description":"If you haven't already heard, Hackers compromised Microsoft support agent’s credentials to access customer email accounts.","url":"https://phishprotection.com/blog/compromised-microsoft-credentials-code-phished/","datePublished":"2019-04-18T06:26:43.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2019-04-18T06:26:43.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/compromised-microsoft-credentials-code-phished/"},"articleSection":"foundational","keywords":"Phishing","wordCount":391,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2019/04/phishing-protection-5796.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"Compromised Microsoft Credentials is Code for They Got Phished","item":"https://phishprotection.com/blog/compromised-microsoft-credentials-code-phished/"}]} ```