Zix | AppRiver has been intercepting several campaigns that were using Microsoft Forms links. These links, which lead to a form asking for username and password of the target's email address could also lead to a critical breach of your emails and company. But why Microsoft Forms? The scammers use these white assets in hopes of bypassing security filters and ultimately fool the recipient into thinking the link address is secured.
MORAL OF THE STORY Microsoft Forms and other survey/form services are great at collecting information, but they also can be used for malicious intent to cause major harm to you and your business. If you come across any emails asking for sensitive information, always be on high alert. The best course of action is don't click on anything within the message - or, if you have suspicions from the beginning, do not open the email. Always report suspicious emails to your IT or email provider.