According to Microsoft security blog , the bad actors behind the attack are using highly convincing phishing emails to trick users into interacting with counterfeit PDF attachments. After opening the PDF, the users are then directed to click a button to open with Adobe. However, instead of taking the user to the official Adobe website, it takes them to a spoofed download page instead of the document they are trying to view. From here, the system automatically downloads the infected file....
