Back to All Attacks
Attack Details
Attack Date:
Apr 29, 2022
SharePoint Fake Document Credential Phishing Attack
Initial Email Content
Subject
Shared File from 40895783234
Body
New Document Shared for Review!
From a Personal/Business Computer:
Open the enclosed attachment:
Note: the image above is only the first of the attached document.
To view more than the first page, Open the attachment or..
GoTo Documents
Attack Screenshots
No items found.
No items found.
Malicious Artifacts
Additional Indicators of Compromise
Type
Description
No items found.
Attack Description
This link-based attack impersonates SharePoint using an external compromised account and a fake document theme to steal credentials.
Analysis Overview
Tactic
External Compromised Account
Goal
Credential Theft
Impersonated Party
Vector
Link-based
Theme
Fake Document
Language