A phishing campaign has been discovered using Microsoft Office 365 OAuth apps to hijack a recipient’s account. Phishing emails are pretending to be shared OneDrive or SharePoint files that contain a link to the shared document. PhishLabs’ Michael Tyler described the attack as “quite clever
Source: personal data