Recently I have been receiving Emails with an attached HTML file that claim to be past due invoices from companies that I have never heard of. I have received several, each from a different sender.
When opened, the HTML file ask for login credentials.
The return Email address is bogus and the attached HTML file may collect information such as passwords, contacts, calendar items, etc. I have inspected the HTML and it contains a huge file full of instructions.
How can I determine where this information is being sent?