Cargo shipping themed phishing campaign. The goal is to steal Microsoft credentials through three links in an email pointing to a fake Office365 login page

New phishing campaign to steal Microsoft credentials. The bait is a fake email about a cargo shipment, to which three documents would be attached.

To view them it is necessary to open a link, which points to a landing page where an Office360 login screen is simulated with the pre-set username. Any alphanumeric password entered will be wrong after two attempts the user will be directed to the domain to which his email address belongs. In the meantime, however, the password has been stolen.