A recently discovered phishing campaign is relying on message quarantine emails for employee credential theft, through an overlay tactic that uses the homepage of the targeted company to disguise the malicious nature of the emails, according to new research from Cofense.