A highly targeted phishing campaign was recently observed while bypassing a Microsoft email gateway using documents shared via the Google Drive service to target the staff of a company from the energy industry. The documents used to link to the phishing landing page were delivered using Google Docs, Google’s online word processor. While the emails appear to come from the company’s CEO, the email address used to deliver them “does not fit the email naming convention of the targeted company
Source: security