An ongoing campaign powered by a phishing kit sold on underground forums is explicitly targeting high-ranking executives in a variety of sectors and countries with fake Office 365 password expiration notifications, Trend Micro researchers warn. The compromised login credentials are likely then sold on those same forums for $250 per account (or even higher).
Read full article on Help Net Security