AL2021_14 Microsoft Office SharePoint Targeted with High Risk Phishing, Ransomware Attack (3rd May 2021)

Cofense Phishing Defense Center (PDC) has discovered a phishing campaign on 28th April 2021 that targets Office 365 users, where Microsoft office SharePoint theme are successfully bypassing security email gateways (SEG) and attackers are using an old Microsoft SharePoint 2019 vulnerability (CVE-2019-0604) to force their way into victim’s networks.