Hackers have collected at least 1,000 login credentials for corporate Office 365 accounts. The phishing campaign has been running for more than half a year and uses dozens of domains that host the phishing pages. The attackers used several phishing email themes to lure potential victims into loading the landing page that collected their Microsoft Office 365 username and password. Google could show results for queries of a stolen email address or password, as seen in the screenshot below. The construction, energy, and IT sectors were the most prevalent targets of these phishing attacks.
Source: https://www.bleepingcomputer.com/news/security/hacker-blunder-leaves-stolen-passwords-exposed-via-google-search/