A new phishing campaign is underway that utilizes EML attachments that pretend to be a received voicemail and prompts you to login to retrieve it. This campaign also uses a clever tactic of tricking you into entering your password twice in order to confirm that you are providing the correct account credentials.
According to research shared with BleepingComputer by email security firm
EdgeWave, a phishing campaign is underway that pretends to be a voicemail received through RingCentral.
These emails are using subjects such that include "Voice:Message", "Voice Delivery Report", or "PBX Message" and an example of one of these phishing emails can be seen below.