Office 365 Phishing Campaign Exploits Samsung, Adobe and Oxford Servers. The attackers abused an Adobe Campaign redirection mechanism, using a Samsung domain to redirect victims to an O365 themed phishing website. The hackers took advantage of the fact that access to a reputable domain, such as Samsungs, would not be blocked by security software. Most of the emails came from multiple generated addresses belonging to legitimate subdomains from different departments in the University of Oxford (UK). The emails prompted users to click on a button that would allegedly take them to their Office 365 account.”]
Source: https://research.checkpoint.com/2020/phishing-campaign-exploits-samsung-adobe-and-oxford-servers/