New Office 365 Phishing Attack Uses Malicious Links in SharePoint Documents

A new phishing attack has surfaced in the form of an imitation SharePoint document. Attackers distribute an email that looks exactly like a SharePoint document that contains a malicious link to an identical website. The website is configured to steal credentials as they're input giving the attacker access to the victims SharePoint. Damage could still be done even if a user does not log in if the link they clicked is malware. It is urged that users of SharePoint know and follow information awareness and scan emails they are receiving. Using MFA is also another layer of security that would help to mitigate the chances of a security breach. Having well informed employees and knowing to watch out for things like emails with "URGENT" levels or links in the body is key to a better security posture.

 

Relevant URL(s): https://www.helpnetsecurity.com/2018/08/15/office-365-phishing-sharepoint/