Security News > 2023 > June > Microsoft Teams vulnerability allows attackers to deliver malware to employees

Security researchers have uncovered a bug that could allow attackers to deliver malware directly into employees' Microsoft Teams inbox.

"Organisations that use Microsoft Teams inherit Microsoft's default configuration which allows users from outside of their organisation to reach out to their staff members," Jumpsec researcher Max Corbridge explained.

With a social engineering pretext to prime the target, a malware delivery attack exploiting this vulnerability has a considerable chance of success.

The malicious payload is delivered into a target's Microsoft Teams inbox, as a file for download. Microsoft Teams as a vehicle for malware delivery.

While most employees have been taught not to click on links or download attachments from unsolicited emails, many still inherently trust identities in Teams and messages received via the platform - and attackers have realized that.

Detecting attempts may prove difficult, since Microsoft currently doesn't provide logs that cover potentially malicious events originating from external tenants, and using web proxy logs to alert on staff members accepting external message requests offers very limited insight, he added.

News URL

https://www.helpnetsecurity.com/2023/06/23/microsoft-teams-deliver-malware/