Microsoft has issued a warning about cyberattack campaigns that exploit legitimate file hosting services like SharePoint, OneDrive, and Dropbox as part of defense evasion tactics. These attacks, which can lead to business email compromise (BEC), financial fraud, and data exfiltration, leverage trusted platforms to bypass traditional security measures. The tactic, known as living-off-trusted-sites (LOTS), has been used in phishing campaigns since mid-April 2024, where restricted, view-only files are shared via email. Recipients are prompted to sign in and authenticate, but are redirected to phishing pages that steal passwords and two-factor authentication (2FA) tokens. Attackers then use the compromised accounts to stage further scams. Microsoft advises users to be vigilant against these increasingly sophisticated techniques.