Cofense posted a blog detailing a phishing campaign utilizing unique tactics that is targeting multiple sectors, including energy, financial services, commercial real estate, food, and manufacturing. This campaign, which spoofs eFax and Microsoft 365, approaches targets in a nontraditional way by pretending to be from a survey site asking for customer feedback. While most phishing campaigns link to hosted files or use attachments, this campaign instead pretends its malicious link is to a survey sent through eFax. However, from there, the spoof continues in a more traditional manner, redirecting the target to a fake Microsoft 365 login page to harvest credentials. Read more at Cofense.