Cofense Intelligence has analyzed a security awareness training-themed campaign that spoofs a training reminder email from KnowBe4. Embedded links in the email direct victims to a credential phishing page targeting Outlook credentials and personal information. The phishing kit is hosted on compromised sites and has been used on at least 30 domains since mid-April 2020, as detailed below. Previous campaigns using this kit had a sexual harassment training theme rather than a security training theme. The kits all used the same exfiltration methods and files.”]
Source: https://cofense.com/spoofed-training-email-from-phishing-simulator-company/