all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Malware delivery to Microsoft Teams users made easy

Add to bookmarks
July 10, 2023, 11:21 a.m. | Zeljka Zorz

Help Net Security www.helpnetsecurity.com

A tool that automates the delivery of malware from external attackers to target employees’ Microsoft Teams inbox has been released. TeamsPhisher (Source: Alex Reid) About the exploited vulnerability As noted by Jumpsec researchers Max Corbridge and Tom Ellson, Microsoft Teams’ default configuration lets external tenants (i.e., M365 users outside the organization) message an organization’s employees. The same configuration doesn’t allow external tenants to send files, but that restriction can be bypassed by switching the internal … More


The post …

alex attackers collaboration configuration default delivery don't miss employees enterprise exploited external hot stuff jumpsec m365 malware message microsoft microsoft 365 microsoft teams organization red team researchers smbs target teams teamsphisher tool vulnerability

Visit resource

More from www.helpnetsecurity.com / Help Net Security

SentinelOne Singularity Cloud Native Security simulates harmless attacks on cloud infrastructure 10 hours ago | www.helpnetsecurity.com
acquisition attackers attacks campaigns +20
Attackers may be using TunnelVision to snoop on users’ VPN traffic (CVE-2024-3661) 11 hours ago | www.helpnetsecurity.com
attack attackers can consumer +17
Cado Security launches solution for forensic investigations in distroless container environments 11 hours ago | www.helpnetsecurity.com
cado security can cloud cloud risk +16
CyberSaint releases NIST CSF Benchmarking Feature 11 hours ago | www.helpnetsecurity.com
benchmarking board cisos csf +25
Ghost Security Phantasm detects attackers targeting APIs 13 hours ago | www.helpnetsecurity.com
access apis application application security +23
Photos: RSA Conference 2024 13 hours ago | www.helpnetsecurity.com
center cisco conference conferences +23
Traceable launches Generative AI API Security to combat AI integration risks 13 hours ago | www.helpnetsecurity.com
access ai integration api api security +26
MITRE breach details reveal attackers’ successes and failures 13 hours ago | www.helpnetsecurity.com
apt attackers backdoor breach +29
Cloudflare for Unified Risk Posture identifies cyber threats 13 hours ago | www.helpnetsecurity.com
access application capabilities cloudflare +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Engineer

@ Celonis | Munich, Germany
View on infosec-jobs.com

Security Engineer, Cloud Threat Intelligence

@ Google | Reston, VA, USA; Kirkland, WA, USA
View on infosec-jobs.com

IT Security Analyst*

@ EDAG Group | Fulda, Hessen, DE, 36037
View on infosec-jobs.com

Scrum Master/ Agile Project Manager for Information Security (Temporary)

@ Guidehouse | Lagunilla de Heredia
View on infosec-jobs.com

Waste Incident Responder (Tanker Driver)

@ Severn Trent | Derby , England, GB
View on infosec-jobs.com

Risk Vulnerability Analyst w/Clearance - Colorado

@ Rothe | Colorado Springs, CO, United States
View on infosec-jobs.com
View more jobs