web
You’re offline. This is a read only version of the page.
close
Skip to main content
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics 365 | Integration, Dataverse... / Can a "Svc.Dynami...
Microsoft Dynamics 365 | Integration, Dataverse...
Suggested answer

Can a "Svc.Dynamics.com" link be used as a redirection link? (Such as in a phishing e-mail?)

(2) ShareShare
ReportReport
Posted on by RSteer 14

I originally asked the following in the "Fraud Protection" forum, but silly me, they have nothing to do with whether Dynamics could be used to disguise fraudulent activity. 
So maybe someone can tell me which forum I should be using, although I really think my question should be simple enough for almost any Dynamics user to be able to answer.  (I don't use Dynamics; I just provide cybersecurity advice (among other things) to my organization.)
Stripped-down version of question:  Can a "Svc.Dynamics.com" link be used as a redirection or forwarding link to another (non-Dynamics) site?  For instance, in the general form "xxxx.Svc.Dynamics.com/t/r/..."?

A colleague in my Federal agency received what LOOKS like a fairly primitive phishing e-mail (bad grammar, typical "your account is locked" scenario, etc.) where the phishing link was in that form.  Neither of us had heard of "Dynamics.com", so she wondered if it was a malicious domain.

Evidently it's not, but I'm wondering if Dynamics has the functionality to redirect a user who clicks on such a link?

(If it can, then a malicious actor could use a legitimate Dynamics account to disguise a phishing link in the same way phishers often use "URL-shortening" services like Bit.Ly.)

Thanks.

I have the same question (0)
  • Suggested answer
    DAnny3211 Profile Picture
    DAnny3211 11,347 on at
    Can a "Svc.Dynamics.com" link be used as a redirection link? (Such as in a phishing e-mail?)
    Hi,
    Yes, links with the format `*.svc.dynamics.com/l/r/...` can potentially be used as redirection mechanisms, depending on how they are configured within the Dynamics 365 environment. These links are often part of Dynamics 365's email and document routing features, and in legitimate use cases, they may redirect users to SharePoint or other integrated services.
    However, this capability can be exploited if a malicious actor gains access to a legitimate Dynamics 365 tenant. In such cases, phishing emails may include these links to lend credibility and bypass basic filters, while ultimately redirecting users to harmful destinations.
    To mitigate this risk:
    - Ensure your organization has **email authentication protocols** (like SPF, DKIM, DMARC) properly configured.
    - Use **Microsoft Defender for Office 365** or similar tools to scan and analyze URLs in emails.
    - Educate users to verify links before clicking, even if they appear to be from trusted domains.
    You can refer to Microsoft’s official documentation on Safe Links and URL protection for more details.
     
    Please verify if this addresses your concern.
    Thanks and best regards,  
    Daniele  
    *Note: This response was prepared with support from Copilot to ensure clarity and completeness.*
  • Suggested answer
    Tin_Man Profile Picture
    Tin_Man 10 on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link? (Such as in a phishing e-mail?)

    Ok, so to answer your question, YES the svc.dynamics.com links can be used to redirect to Microsoft Sharepoint servers, apperantly even hosted by 3rd party or even self hosted Sharepoint servers and from there well the sky's the limit. Sharepoint servers can serv up any number of files as well as redirects and the worst part is that it could very well have an ssl certficiate.

  • Tin_Man Profile Picture
    Tin_Man 10 on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link? (Such as in a phishing e-mail?)

    Ok, now I have the same question!  I have an email now that went to my client, apparently from someone they know and talk to frequently. This email seems simple enough in that it requests to review a document. The link in the email sent me to a box.com site with a pdf file and in that pdf file there is another link to click on. Annoyingly enough I can't even right click on that link to get a copy of of the URL. And as complicated as this all sounds it was only 2 clicks to a svc.dynamics.com url.  So is Microsoft Dynamics sending out phishing emails? or maybe someone found a way to exploidt a feature? Because this is awfully suspicious and i would prefer a solution though Microsoft's awareness rather than Microsoft showing up in the news again about some new vulnerability again.

  • RSteer Profile Picture
    RSteer 14 on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link? (Such as in a phishing e-mail?)

    Apologies about the weird formatting and missing line-breaks -- they were there when I wrote the message, and it was all the same size font.  The in-line editor seems very funky.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Join experts in person to explore low code and AI agents at the Power Platform Community Conference sponsored by Microsoft
Our Community Code of Conduct has been updated!

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Andrés Arias – Community Spotlight

We are honored to recognize Andrés Arias as our Community Spotlight honoree for…

Congratulations to the August Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Microsoft Dynamics 365 | Integration, Dataverse, and general topics

#1
Sahan Hasitha Profile Picture

Sahan Hasitha 225

#2
Abhilash Warrier Profile Picture

Abhilash Warrier 129 Super User 2025 Season 2

#3
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 123 Super User 2025 Season 2

Last 30 days Overall leaderboard

Featured topics

Identifying an Org as CDS or Dynamics
Get batch job history log from D365 FO to Power Automate
Gross and Net Weight of Shipments feeding back into Sales Order (from External Source)

Product updates

Dynamics 365 release plans