Over the past two months, my outlook account has been receiving phishing email regarding cloud storage payments, mostly in French and some English with the usual warning such as the account is about to be locked, space is full, loss of data, refused payment, expired payment method, etc.

Some of the emails have some typical minor spelling errors. The message is essentially the same, asking to log in before losing any data. The same interface shows the same data in both languages.

Reviewing Storage Options from thee URL from French and English emails shows the same message in both languages.

This is a sample list of phishing emails received over the past 2 months all with the same theme:

Indicators

Support du stockage cloud<indigo.thomas@gamepanditos[.]org>
Cloud Billing Team<max.walker@gamepanditos[.]org>
Dernier rappel<scout.jones@gulalguru[.]org>
Support Technique Cloud<lane.lee@manyn[.]org>
Support Technique Cloud<logan.king@crickstrike[.]org>
ssistance Cloud Sécurisée<finley.ramirez@dudugo[.]space>
Sécurité Cloud<indigo.anderson@badideaai[.]space>

[1] https://www.ftc.gov/business-guidance/small-businesses/cybersecurity/phishing
[2]] https://www.itgovernance.co.uk/blog/5-ways-to-detect-a-phishing-email
[3] https://www.cyber.gc.ca/en/guidance/spotting-malicious-email-messages-itsap00100
[4] https://www.sans.org/for-organizations/workforce/security-awareness-training/phishing
[5] https://www.sans.org/blog/phishing-its-no-longer-about-malware-or-even-email

-----------
Guy Bruneau IPSS Inc.
My GitHub Page
Twitter: GuyBruneau
gbruneau at isc dot sans dot edu