Cybercriminals are abusing cloud services, such as Google Cloud Services, to arrange a phishing campaign aimed at stealing Office 365 logins. Check Point reports attackers relied on Google Drive to host a malicious PDF document and Google’s "storage[.]googleapis[.]com" to host the phishing page. The page is designed to trick victims into providing their Office 365 logins or organization e-mail. WESTptotect recommendations include educating staff on phishing and not clicking on unknown links.