‘Secured OneDrive File’ Phishing Scam Email

Keep an eye out for bogus OneDrive emails claiming that someone has shared a secure document with you.

The emails are phishing scams designed to steal your Microsoft Account login credentials.  The names of the supposed senders in the emails may vary.

Here’s a screenshot of one of the emails.

If you click the “Download Document” link you will be taken to a OneDrive for Business document sharing page. Because the landing page is on the genuine OneDrive website, you may be convinced that the document you are about to access is legitimate. It’s only when you click the “Access Document” link that the trouble starts.

Clicking the link takes you to a phishing website that claims that you must enter your Microsoft Account email address and password before you can access the document. The fake site has been designed so that it looks like it belongs to Microsoft.

But, alas, there is no document. After you enter your account credentials, you may be automatically redirected to the genuine OneDrive or Office 365 website.

So,  after they have gained entry, the scammers can use these services to launch spam and scam campaigns, collect and steal your personal information,  and conduct fraudulent transactions and activities in your name.

Stay alert! Criminals commonly send emails claiming that you should click a link or open an attached file to access a document they have shared with you.