Hi, wetransfer.com is being used to send links to PDF phishing documents. It's otherwise a trusted service, and there's really nothing in the body to indicate it's dangerous or any different than other legitimate uses for the same service.
https://pastebin.com/CEuFfb7K Of course these can be reported to wetransfer (although I don't see a direct way in the email itself), but my users are super sensitive to these, and we won't be around long if this continues. Ideas on how to block these are greatly appreciated.
