Google Docs Forms Abused by Phishers to Harvest Microsoft Credentials
0 Comments

Security researchers detected several phishing campaigns that leveraged a Google Docs Form to target users’ Microsoft credentials.

Cofense observed that the phishing emails originated from a compromised email account with privileged access to financial services provider CIM Finance. By using CIM Finance’s website to host their phishing emails, the malicious actors ensured that their messages could bypass popular email security checks including DKIM and SPF.

Google Docs Forms Abused by Phishers to Harvest Microsoft Credentials

Beware of Google Docs forms asking for Office 365 updates



Phishing Alert! Don’t Open Office 365 Update Through Google Docs Form Or Your Microsoft Credentials Will Be Compromised!

Phishers using strong tactics and poor bait in Office 365 scam

Author

mukeshathavale.manzi@gmail.com

Leave a Reply

Your email address will not be published. Required fields are marked *