With the increased attention to email security in every organization, users are getting used to receiving documents sent to them over "secure" services. With sensitive data flowing around via email, sending and viewing them in a secure way is a good idea.
Hackers agree, which is why they've begun to send phishing emails that resemble such messages. Here's what it looks like:
Notice the added sense of urgency, with the expiration date on the message.
ATP failed to catch this sophisticated and well-disguised phishing attack, but Avanan's AI was able to determine this email was phishing due to the language used in the email combined with static layers like low domain reputation.