A spear-phishing campaign is targeting enterprise users in an effort to steal Microsoft Office 365 credentials. The fraudsters appear to have compromised hundreds of legitimate accounts to help craft realistic-looking emails, Abnormal Security researchers say. The phishing emails typically contain an embedded link that leads the user to what the researchers call never-seen-befores sites. So far, hundreds of these domains have been detected, the report says. In one case, the malicious messages impersonated eFax, an online fax service, and the messages included “Doc Delivery” notifications.”]
Source: https://www.cuinfosecurity.com/recent-spear-phishing-attacks-originate-from-legit-accounts-a-15604