Users continue to receive unsolicited files that are likely phishing attempts
Microsoft is facing growing user concerns as persistent spam and suspicious file-sharing activity continue to affect its OneDrive platform, with complaints surfacing across forums since late 2025. Despite acknowledging the issue earlier this year, the company has yet to deliver a comprehensive fix, leaving users vulnerable to potential phishing and malware threats.
The issue involves unsolicited files and links appearing in users’ OneDrive accounts from unknown senders. Many users report receiving email notifications containing links labeled with vague or enticing names such as “GET COIN,” “GET FILE,” or “GET BONUS.” These messages are widely suspected to be part of phishing campaigns, often leveraging cryptocurrency-themed lures or explicit content to trick recipients into clicking malicious links.
Microsoft initially acknowledged the problem in January, confirming that the issue impacts multiple platforms, including Windows, macOS, iOS, and web-based access. At the time, the company indicated it was working on a resolution expected by the end of January. However, months later, users continue to report the same issues, raising concerns about the effectiveness and timeliness of Microsoft’s response.
The company has advised users not to engage with suspicious links and to block or report unknown senders. Additional recommendations include disabling notifications for shared files and strengthening spam filters within Microsoft 365. However, many users claim that these measures have proven insufficient, as blocked senders can still appear to bypass restrictions.
A particularly frustrating aspect of the issue is that these files do not technically reside within users’ OneDrive storage, making them difficult to remove permanently. Even after attempting to delete or hide the files, they often reappear, contributing to ongoing user dissatisfaction and confusion.
Microsoft’s support team has clarified that users are not held responsible for illegal or malicious content shared with them, provided they do not download, store, or distribute such material. Nevertheless, the presence of these files raises broader concerns about platform security and user trust.
The situation is further compounded by ongoing criticism of OneDrive’s default integration within Windows systems. Some users have reported unintentionally storing files in the cloud due to default settings, only realizing it after disabling the service and finding their files missing locally.
As complaints continue into early 2026, the lack of a definitive solution highlights the challenges Microsoft faces in securing its cloud ecosystem against evolving spam and phishing tactics. The ongoing issue underscores the need for stronger safeguards, improved spam detection mechanisms, and greater transparency to maintain user confidence in OneDrive’s security infrastructure.
Recommended Cyber Technology News :
- Google Cloud Storage Abused in Remcos RAT Phishing Attack
- Meta Business Manager Misused in Large-Scale Phishing Attack
- 75% of UAE Cyberattacks Caused by Phishing Emails
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
