Cofense identified a new email campaign that alerts recipients that they received a new voicemail message. The voice was with a preview that tempts users to listen to the full message. By using this technique attackers show that email is sent human and evades detection. The email contains a play button which has an embedded hyperlink pointing to the page that contains Captcha. This step is to bypass the automated analysis tools and to bypass secure email gateways. The phishing page asks the user to select a Microsoft account to log in when the victim login.”]
Source: https://gbhackers.com/hackers-hiding-malware-captcha/

