A new phishing campaign uses a trio of enterprise cloud services, Microsoft Azure, Microsoft Dynamics, and IBM Cloud, as part of an attempt to steal your login credentials. The email imitates a quarantined mail notification frequently sent out in workplaces by email security products and spam filters, asking the user to release messages stuck in the queue. The phishing email is sent through an intermediary cn.trackhawk.pro domain, but the originating domain is clearly servicedesk.com
Source: https://www.bleepingcomputer.com/news/security/new-phishing-campaign-abuses-a-trio-of-enterprise-cloud-services/