Microsoft spotlights the work of Seaborgium, a Russia-based threat actor that has abused OneDrive to phish high-value targets and uses LinkedIn to research them.
Article Link: Spy group abuses Microsoft OneDrive to steal credentials in hack-and-leak campaigns | ZDNET