Microsoft is warning email users of other crafty schemes, this time involving PDF attachments.
PDF, short for the Portable Document Format pioneered by Adobe, is a popular method of distributing content online. Cyber-attackers are banking on its ubiquity, particularly in the workplace, to ensnare office workers. The latest phishing attempts may slip through an antivirus software’s defenses.
Sometimes spoofing real employees at legitimate companies, one attack involves sending a product or service quote as a file attachment (Quote.pdf). Once opened, the PDF file, crafted to mimic an error message, leads users to an online login page that offers access to the ostensibly confidential information contained in the PDF file.
You can read about it in an article by Pedro Hernandez at https://goo.gl/uu4I5u.