web
You’re offline. This is a read only version of the page.
close
Skip to main content
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Finance | Project Operations, Human Resources, ... / Can a "Svc.Dynami...
Finance | Project Operations, Human Resources, ...
Suggested answer

Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

(1) ShareShare
ReportReport
Posted on by RSteer 14

A colleague in my Federal agency received what LOOKS like a fairly primitive phishing e-mail (bad grammar, typical "your account is locked" scenario, etc.) where the phishing link is:

 

2892315232e342469ddd8529ecaed302.svc.dynamics[.]com/t/r/j0E6fiLhB7S4xTp0ybo43HjtIBvAo-7uG5kVQL5Cbvg#e___.webmaster@___.gov:489944848849949930-3993=3-00399e883930wwwwwww   (Square brackets added to prevent accidental clicking, and underscores anonymize the recipient.)

From what I can tell (not actually being a Dynamics user), "svc.dynamics.com" is a legitimate, non-malicious domain.  But I'm wondering if the behavior of Dynamics (or Svc.Dynamics) is such that a malicious actor can use this type of apparently legitimate link to redirect a "clicker" to a malicious destination?

 

Thanks.

Randy Steer.

I have the same question (0)
  • DavidYu Profile Picture
    DavidYu on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

    Yes

  • Rogers897 Profile Picture
    Rogers897 10 on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

    Ok, so to answer your question, YES the svc.dynamics.com links can be used to redirect to Microsoft Sharepoint servers, apperantly even hosted by 3rd party or even self hosted Sharepoint servers and from there well the sky's the limit.

    mysainsburys

  • Rogers897 Profile Picture
    Rogers897 10 on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

    Ok, so to answer your question, YES the svc.dynamics.com links can be used to redirect to Microsoft Sharepoint servers, apperantly even hosted by 3rd party or even self hosted Sharepoint servers and from there well the sky's the limit.

  • Collerz Profile Picture
    Collerz 15 on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

    The link can be disguised

  • ToddB Profile Picture
    ToddB on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

    Hi Randy,

    As mentioned, it looks like the link is coming from Dynamics 365 Marketing.

    docs.microsoft.com/.../using-events-api

    This could be legitimate and someone was sent it by mistake but this really isn’t related to Dynamics Fraud Protection.

    Here is the Dynamics Marketing forum:

    community.dynamics.com/.../dynamics-365-for-marketing-forum

    Hopefully this helps.

  • RSteer Profile Picture
    RSteer 14 on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

    OK, so which Dynamics support forum would know enough about how the product works to be able to say if a "svc.dynamics.com" URL can redirect or forward someone to another website?  

    As I said, I don't use use Dynamics, I just provide cybersecurity advice to my organization, but that doesn't seem like it should be a difficult question for Dynamics users or support to answer.

    Thanks.

  • Suggested answer
    ToddB Profile Picture
    ToddB on at
    RE: Can a "Svc.Dynamics.com" link be used as a redirection link in a phishing e-mail?

    Hi Randy,

    This is not something that the Fraud Protection team would be able to answer.

    Please see the below in regard to Dynamics 365 Fraud Protection:

    cloudblogs.microsoft.com/.../

    It looks like the link is coming from Dynamics 365 Marketing.

    https://docs.microsoft.com/en-us/dynamics365/marketing/developer/using-events-api

    This could be legitimate and someone was sent it by mistake but this really isn’t related to Dynamics Fraud Protection.

    This should be redirected to the Windows Security team.

    Thanks in advance.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Join experts in person to explore low code and AI agents at the Power Platform Community Conference sponsored by Microsoft
Our Community Code of Conduct has been updated!

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Andrés Arias – Community Spotlight

We are honored to recognize Andrés Arias as our Community Spotlight honoree for…

Congratulations to the August Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

#1
CA Neeraj Kumar Profile Picture

CA Neeraj Kumar 1,072

#2
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 831 Super User 2025 Season 2

#3
Sohaib Cheema Profile Picture

Sohaib Cheema 829 User Group Leader

Last 30 days Overall leaderboard

Featured topics

End-of-life Announcement for Microsoft Dynamics GP

Product updates

Dynamics 365 release plans