Cybersecurity experts have alerted online users to a new phishing campaign that asks them to log in to a fake OneDrive site in order to read an encrypted message. This phishing campaign sends an alert from email service providers stating that users have received an encrypted message. These emails have subject lines such as ‘Encrypted Message Received’ and includes a link stating ‘View Encrypted Email’. Upon clicking on the link, it redirects to a fake OneDrive for Business page. The phishing page prompts users to click on the ‘Open’ button to view the message. Once users log in with their email credentials, the entered login credentials are saved, which are later misused by the attackers.
Researchers are warning users to always examine URLS before entering login credentials. They are also asking users to never open any email or attachment from anonymous senders.