More and more we are receiving phishing emails with hyperlinks to publicly shared Sharepoint documents. In these documents are embedded hyperlinks to spoofed login pages, designed to steal credentials.

Blocking sharepoint.com through Exchange or network layer URL filtering is out of the question as the site is used for legitimate purposes.

Blocking the sender of the email is great to prevent future inbound emails from that sender, but does nothing to protect those user's who will visit the malicious Sharepoint document in the future.

Sharepoint needs an option to report abuse on all files, similar to how Google Drive does. A simple button in the top corner.

Reporting a file for abuse should immediately revoke the public share settings and notify the site admin.

It's bad enough that Microsoft is doing nothing to pragmatically prevent this type of abuse, but to not offer some means of reporting it manually is inexcusable.

FIX THIS