A friend of mine received an email like this and asked me to look at it and tell her if it was a scam. It was pretty clear it was a scam, so I reported it to outlook for her. But being me, I wasn’t done yet. (By the way, the site they want you to go to is hxxp://readymag.com/u310003745/2963524/)
I fired up a virtual machine, set up my VPN, and took a look at the site for myself. They did a pretty pathetic job making it look legitimate.
I played along, and pressed “Click here to confirm.”
It then took me to another site (hxxp://confirmationxxx.weebly.com)
I put in some fake details, and then pressed Sign in.
It then redirected me to the real Microsoft login page.