Quote:A newly spotted phishing campaign uses Microsoft voicemail notifications as baits to trick targets into opening HTML attachments that redirect to the attackers' landing pages using a meta element.
 
As detailed in research shared with BleepingComputer by email security firm Avanan, the campaign's operators are spamming potential victims with emails disguised as Microsoft Office 365 voicemail alerts.

These phishing emails instruct the targets to open the attachments to be able to listen to the voice messages, displaying the caller number and voicemail length within the message to look more convincing.