Attacker uses an Office 365 site to steal user credentials
Email phishing may be one of the oldest tricks up the sleeves of any hacker, but it hasn’t run out of fashion yet. For example, a malicious player recently set up an Office 365 phishing base to fraudulently obtain usercredentials. Pretty much any platform that requires user authentication to allow access can be a target for phishing. Also, anyone can be a victim, from SaaS customers to OneDrive users.