“Phishers Are Targeting Office 365 Users by Exploiting Adobe Cloud”

Jeremy Fuchs, a security researcher with Avanan, warns of the creation and use of Adobe Creative Cloud accounts by malicious actors to send phishing emails that can evade traditional checks and some advanced threat protection solutions. These attacks emerged in December 2021, exploiting the design of Adobe's apps to support collaboration by sharing documents. The attack involves creating, importing, and hosting a legitimate-looking PDF on Adobe Cloud that points to a fake Office 365-themed login page hosted on Weebly. This article continues to discuss phishers' exploitation of Adobe Cloud to target Office 365 users. 

Help Net Security reports "Phishers Are Targeting Office 365 Users by Exploiting Adobe Cloud"