Researchers have found a new phishing campaign leveraging Google Drive in order to steal credentials. The phishing email subject lines are the same, Document, and the stolen credentials are hosted on a third-party server. This campaign has the earmarks of a similar one uncovered in March 2014, which like this one, presents the victim with a phony Google log-in page hosted on the Google platform and served over HTTPS. Elastica Cloud Threat Labs says Google has removed the phishing pages.
Source: https://threatpost.com/new-phishing-campaign-targets-google-credentials/113985/