December 2, 2022

Microsoft Teams Fixes Its Hacking Problem

Finally, Microsoft Teams fixes its hacking problem. One of the most important security issues impacting Microsoft Teams has been addressed by the development team in a recent release.

The built-in security features of Office 365 will improve user experience. They will allow users of the video conferencing platform to flag suspicious Microsoft Teams messages as a security issue.

Users of Office 365 will be able to use the service through Microsoft Defender. And it will function very similarly to the way suspicious emails are now reported.

 

Microsoft Teams fixes its hacking problem: phishing on Teams

The new technology would aid a company in “protecting itself from threats via Microsoft Teams,” according to its entry on the official Microsoft 365 roadmap.

Doing so should be as easy as selecting a Defender pop-up message warning of potential dangers. This should instantly block the malicious message.

For the time being, the feature is still described as being in development. There’s a general availability launch date of January 2023. When ready, Teams and Microsoft Defender for Office 365 will be used by all web and desktop users worldwide.

The announcement is the most recent in a series of improvements to Microsoft Teams. These were made to better shield users from potential security risks.

The platform was given the power to automatically stop phishing attempts back in July 2021 as a result of an expansion of Defender for Office 365 Safe Links. This program checks every URL given over Microsoft Teams to see if it leads to a dangerous website.

Microsoft stated that each month, its detection algorithms find about two million unique URL-based payloads. Fraudsters employ these to carry out campaigns phishing for user credentials.

Microsoft Teams has long been a desirable target for hackers. It provides a simple way to gain access to a company through its staff. Attackers are exploiting Teams chats and channels to propagate malicious executable (.exe) files throughout enterprises. This is according to a report from February 2022. Once active, these files can send harmful files to any employee of the firm via individual chats or group channels.

Another recent Microsoft 365 phishing campaign attempted to pose as several US government agencies.

The emails, which are sent to government contractors, pretend to request bids on government projects. Instead, they direct recipients to pages that steal their credentials.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: