[RKDinOKC]

While I was at lunch we got hit with another one. It is a Dynamics365 document link. Went to thousands of email addresses from one of our marketing peoples Outlook. She claims she never entered her password anywhere, microsoft tech support says that is the only way the emails were sent. All the header and envelope info points to an IBM cloud VPN in Dallas.

Just had anther supervisor that after reading the warning clicked on the link, logged in, AND downloaded the malware. The IT Director told him to reset his password and he would be fine. The next time he tried to log in, his computer had him reset his password again! Think the hackers just got his newest password!