Be on alert! Bad guys have a new way of obtaining your login credentials which allows them to access your accounts/files remotely without you knowing. They send you an invite via email to open a SharePoint document. The link takes you to an actual SharePoint page where you will see a OneDrive prompt. The prompt will have an “Access Document” link in it- don’t click this link!
This link is malicious and will take you to a fake Office 365 login screen. Any credentials you enter here will be sent to the bad guys. Don't be tricked! Whenever you're submitting login credentials to any site, make sure to check the top of your web browser where the website name is listed (aka URL) to ensure it's a site you trust and were expecting to visit. See examples:
< Microsoft Edge Browser example
< Google Chrome Browser example
Also, remember to always try to hover over links to see where they are taking you. The website name is usually there as well (look out for misspellings of a common name, like go0gle.com).
If you have concerns that you've given out your information, be sure to change the passwords on any accounts you use with that password then we suggest you call a professional.
Think Before You Click.
Edward Smith
Business Support Technician
CSN Tech Centre Ltd.
Additional security information published here.