Dropbox Used to Steal Credentials and Bypass MFA in Phishing Campaign

The use of legitimate Dropbox infrastructure in the phishing campaign allowed the attackers to effectively evade detection by email security tools and bypass MFA protocols.