Cybersecurity researchers at ESET recently identified that new OilRig downloaders are abusing Microsoft Cloud APIs for C&C communications. Cyberespionage group OilRig, active since 2014, targets Middle Eastern governments and diverse industries. Notable campaigns include DNSpionage (2018-2019) and HardPass (2019-2020) using LinkedIn.
Source: GBHackers