Unverified Email

Question

I have recently received three Emails in the Junk Email folder, classified as unverified by Microsoft. The Emails look as if they were sent from my mailbox.

Is the "from" field, after my email address appears the text: via q8idea.com; via app.byrent.id or marians.de.

Should I be worried about the situation or is it enough to delete the Emails and block the sender?

Answer 1

What you’re seeing is very likely email spoofing, not someone actually sending messages from inside your mailbox. The “from” address in email can be forged quite easily, and the extra “via q8idea.com / app.byrent.id / marians.de” is a clue that the sending server doesn’t match your real domain. Microsoft flags these as unverified because the authentication checks (SPF, DKIM, DMARC) don’t fully align.

This does not by itself mean your account is compromised. It usually just means someone is using your address as a fake sender, often for spam or phishing campaigns. That’s annoying but common, and it doesn’t require access to your account.

Deleting the emails and blocking the sender is fine for cleanup, but blocking often won’t stop spoofed messages because the sender address can keep changing. The more important question is whether there are any signs of actual account access. If you’re not seeing unfamiliar sent emails in your Sent folder, no unexpected login alerts, and no security notifications from Microsoft, that’s a good sign.

To be safe, you should still take a couple of precautions. Change your email password to a strong, unique one and make sure two-factor authentication is enabled on your Microsoft account. Then check your recent sign-in activity in your Microsoft account security page and look for any unfamiliar locations or devices. Also verify that there are no forwarding rules or inbox rules you didn’t create, since attackers sometimes add those if they get access.

If everything there looks normal, then this is almost certainly just spoofing and you don’t need to worry beyond basic hygiene. If you do see unknown logins or suspicious rules, then treat it as a compromise and secure the account immediately.

---

If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.

hth

Marcin

Answer 2

Hello,

Email spoofing happens when someone uses an outside mail server to send messages that pretend to come from your email address by forging the "From" field. They do not have access to your actual email account. To prevent and detect this, email providers like Microsoft use verification like SPF (to define which servers are allowed to send on your behalf), DKIM (to attach a digital signature to prove the email is real), and DMARC (to tell other servers what to do if a message fails these checks). If a spoofed email fails these checks, it will usually be flagged as spam or rejected. And they would be also labeled as "unverified", meaning SPF,DKIM, DMARC failed, and they are not really sent from the said-from address.

So, if the email is already in spam/junk folder, you have nothing to worry about. Your account is not compromised. You can just ignore it. You don't even need to block it, because blocking only goes by what's listed on the "from" line, so you will end up blocking yourself.