Possible security issue with Google result and office 365?

[BvH]

Hi Everyone,

 

Maybe it's nothing but I found something strange with a search result in Google that might be a security issue.

 

When I search on the following at google.com "Office 365 Login" i get the following result:

 

 

When I click on Sign In I am redirected to a Godaddy site and not Microsoft.

The URL seams to be faulty and containing a realm (h t t p s://outlook.office.com/owa/?realm=masterworksdesign.com)

 

Could this be a malicious site for harvesting accounts?

 

[Lurick]

Do you own the domain: masterworksdesign.com?

Because it's just redirecting you to the login for outlook for that site.

[BvH]

No I do not, that's what concerns me, why does a standard result on Google contains that domain.

 

Other people I contacted reported the same result so it doesn't seem to be related to my system or network.

[Carbonado]

Might seem gibberish but bear with me for a minute.

The code just here shows that GoDaddy (GD hereon) is a portal, so we need to fact check that first.

Upon checking the link, it is actually a GD link, not some rando website built with a GD domain.

But what does GD have to do with Microsoft? Surely Microsoft can host their own domains, why is GD in the picture?

Turns out, we can actually purchase Microsoft 365 through GD. And what Google thinks is that we've purchased 365 through GD, in which case, we can only login to Office through GD. This is partly Google's fault and it checks out when you try the same search in alternative search engines.

Ex:

 

And you can also fact-check the "need to sign in through GD" part in the other engine too.

ex:

Notice how it's almost like there is a separate Microsoft Office 365 environment in GD, that's because the people who bought office in the GD site (pic below), can only login through that.

(final pic i promise lol)

 

So yeah, Google's fault, and our not knowing that Office can be bought through GD results in a VERY malicious, scammy, sketchy looking website link lol.

Hope you understood lmao, let me know if you have questions!

[BvH]

Thank you for the explanation, I am glad to hear it is not a scam.

 

But why the masterworksdesign.com domain as realm in the underlying url while the results are displayed as a part of the office.com domain?

 

[Carbonado]

1 hour ago, BvH said:

Thank you for the explanation, I am glad to hear it is not a scam.

 

But why the masterworksdesign.com domain as realm in the underlying url while the results are displayed as a part of the office.com domain?

 

What I think is happening is that, Google in all it's glory, thinks we might be that domain mentioned above, and hence, thinks we want to sign in as masterworksdesign into Microsoft 365, and maybe that domain owner bouth Office through GD, so yeahhh, Google f-ed up. lol.