Why is a Zoom link asking for my Microsoft password?

It is a phishing scam. Real Zoom meetings do not require you to enter your Microsoft Office or Google email password to join a call.

The email came from my boss's actual email address. Is it safe?

Not automatically. Scammers can spoof the 'From' address, or your boss's email account may have already been hacked. Always verify unusual requests out-of-band.

I typed my password into the fake Zoom portal. What now?

Contact your company's IT desk or security team immediately. Change your email password instantly from a safe device and ensure two-factor authentication is active.

Zoom Scam Checker

Zoom scam checker for fake meeting invites.

Got an unexpected email alerting you to a missed Zoom conference call, a mandatory HR meeting, or a suspended Zoom account? Stop. Scammers use fake Zoom invites to steal corporate login credentials and distribute malware.

Security Insight

Zoom impersonation is a dominant tactic in business email compromise (BEC). Because employees log into Zoom daily, clicking an invite link is an automatic reflex that attackers exploit easily.

Instant risk analysis

Checks sender identity

No signup required

Check Message on Homepage Read Scam Education

Detecting fake Zoom alerts

Attackers clone Zoom's blue branding perfectly to trick you into entering your company email password. Watch out for these common enterprise scam patterns.

The 'Missed Meeting' notification

An email stating you missed a critical conference call to discuss 'Q3 Performance' or 'HR Review', with a link to 'Check the recording'.

Fake login portals

The Zoom link you click doesn't open the Zoom app, but instead takes you to a webpage asking you to log in with your Microsoft Office 365 or Google Workspace password.

Account suspension warnings

A fake IT department warning stating your Zoom application is out of date or your license expired, demanding an urgent login to restore access.

Malicious file downloads

The email instructs you to download a new 'Zoom plugin' or 'Audio driver' to join the meeting, which installs spyware on your machine.

What IsThisSpam checks before you trust a sender

Quick verdicts are useful, but the real value is understanding why something looks safe, uncertain, or risky.

Non-Zoom URLs

Hovering over the 'Join Meeting' button reveals a link ending in something strange like .xyz or .ru instead of zoom.us.

Unsolicited invites from executives

Scammers spoof the CEO or Head of HR to create a sense of panic regarding an 'Urgent Mandatory All-Hands'.

Generic greeting

Legitimate internal company invites usually address you directly, while scams often use 'Dear Employee'.

Unexpected password prompts

Zoom links should open the Zoom app natively. If a web browser opens and asks for your corporate email password, close it immediately.

Related guides

Use the checker for the fast answer, then read the deeper guidance for recurring scam patterns.

Microsoft Scam Checker

Zoom scams often overlap with Microsoft Office 365 credential harvesting.

Read the guide

How to Tell if a Website is a Scam

Identify the fake Zoom login screens scammers use to harvest your details.

Read the guide

FAQ

These are the questions people usually ask right before they click, reply, or pay.

Got a screenshot or attachment? Our AI can analyse it.

Free scan first, deeper analysis when you need it

Check the sender before you trust the message.

Start with a fast scan, then move to SuperScan when the message involves money, account access, or sensitive documents.

Check Message on Homepage Read Scam Education