Attackers have deployed a phishing campaign against remote workers using Skype, luring them with emails that fake notifications from the service. The phishing attack slipped through the defenses of a couple of email protection services and was discovered by Cofense cybersecurity company. The notification messages appear to originate from the Skype service with a legitimate-looking email address. There is an initial redirect via a link in the.APP generic top-level domain (gTLD) that is managed by Google. After that, the fake Skype login page loads at (“hxxps://skype-online0345[.]web[.]app””)”
Source: https://www.bleepingcomputer.com/news/security/creative-skype-phishing-campaign-uses-googles-app-gtld/