A new campaign is targeting the United Nations and several humanitarian aid organizations, including UNICEF, the Red Cross and UN World Food. The campaign is using landing pages signed by SSL certificates, to create legitimate-looking Microsoft Office 365 login pages. Mobile web browsers also help obfuscate phishing URLs by truncating them, making it harder for the victims to vet the legitimacy of the pages. The intensity and sophistication of phishing techniques are constantly increasing, said Shlomi Gian, CEO at CybeReady.
Source: https://threatpost.com/un-unicef-red-cross-mobile-attack/149556/