1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Microsoft Teams is not the safe haven you think it is

    From TechnologyDaily@1337:1/100 to All on Thu Feb 17 15:30:04 2022
    Microsoft Teams is not the safe haven you think it is

    Date:
    Thu, 17 Feb 2022 15:14:33 +0000

    Description:
    If you think youre safe from cybercriminals inside Microsoft Teams, youd be wrong.

    FULL STORY ======================================================================

    Cybercriminals are capitalizing on the popularity of collaboration platform Microsoft Teams to infect victims with malware , a new report suggests.

    According to security firm Avanan, there has been a spike in the number of cyberattacks taking place over Microsoft Teams since the turn of the year.

    Specifically, attackers are using Teams chats and channels to spread
    malicious executable (.exe) files throughout organizations.

    In the report, Avanan is critical of the protections afforded by Microsoft Teams, which is described as lacking in its approach to scanning for
    malicious files and links. TechRadar Pro has asked Microsoft for a response
    to this critique. Microsoft Teams attacks

    Given services like Slack and Microsoft Teams are closed ecosystems, designed to be accessible only to members of a specific organization and a select pool of guests, users can be forgiven for assuming these digital spaces are safe from attackers.

    However, Avanans research demonstrates that cybercriminals are more than capable of invading these private systems. And once inside, the potential to cause widespread damage is large.

    As the report explains, attackers begin by gaining access to a companys Microsoft Teams domain, either using credentials already exposed online or by stealing passwords via phishing attacks. Read more

    There will soon be no escape from Microsoft Teams, even in the office


    Why Slack isn't afraid of Teams or any other competitor


    Microsoft Teams update lets you hide from your own face

    After breaking into a Teams domain, they are then free to deliver malicious files to any member of the organization, either via one-on-one chats or group channels.

    In the specific instance highlighted by Avanan, the attackers distribute an executable file entitled User Centric, which the researchers suppose it designed to sound innocuous. Once opened, the executable establishes the ability to self-administer, effectively handing control of the machine to the attackers.

    To defend against these kinds of threats, Avanan advises Microsoft Teams customers to implement a system whereby all files are downloaded in a sandbox environment, where they can be inspected for malicious content.

    Beyond that, businesses are advised to deploy a comprehensive security suite and deliver cybersecurity training that will equip employees with the skills to identify suspicious files delivered over Microsoft Teams. Also check out our list of the best endpoint protection services



    ======================================================================
    Link to news story: https://www.techradar.com/news/microsoft-teams-is-not-the-safe-haven-you-think -it-is/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)