Tuesday, November 24, 04:47
Home security Hackers pretend to be Microsoft Teams to steal credentials

Hackers pretend to be Microsoft Teams to steal credentials

Cybercriminals pretend to be Microsoft Teams to steal them Office 365 credentials employees.

Microsoft Teams

This new one hacking campaign was discovered by its researchers Abnormal Security and has targeted over 50,000 users of the Office, with one an automated message that appears to come from the Microsoft Teams communication platform.

According to researchers, the fake e-mail states: "There is new activity in Teams”And looks like an automated notification from Microsoft Teams.

The e-mail makes the recipient believe that his associates are trying to contact him and urges him to click on the option "Reply to Teams".

Victims who click on any of the three links in the email, lead to a malicious Phishing σελίδα. There are asked to provide the email and password access their.

"The phishing landing page is very similar to its login page Microsoft. URL starts with “microsftteams" offering further reliability", The researchers noted.

If victims give their credentials, The hackers will have access to both this and sensitive information stored in their account. In addition, attackers may be able to perform BEC attacks and gain access to the corporate network.

Cybercriminals take advantage of the fact that Microsoft Teams and other communication platforms are widely used because Mesures COVID-19 and use it to deceive their victims.

"Because Microsoft Teams is an instant messaging service, recipients of this alert can click on it immediately to respond quickly to any message they think they may have missed.", Noted Abnormal Security.

In May, Abnormal Security researchers discovered two other similar campaigns, where the swindlers had taken advantage of the Microsoft Teams to deceive their victims.

According to Infosecurity Magazine, investigators had said of those attacks: "These intruders created convincing fake emails from Microsoft Teams. The phishing landing pages that hosted both attacks looked like real websites".


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!


Details of Spotify users were exposed by hackers

A hacking team has gained unauthorized access to 350.000 Spotify accounts on the music streaming service. To achieve this ...

Black Friday: Tips for Secure Online Shopping

Black Friday and Cyber ​​Monday are two of the busiest days for online shopping. And of course ...

Photoshop: How to restore the old mode of Free Transform

Adobe recently changed the way Free Transform works. But you can restore the old way of working ...

EU: Ready to end end-to-end encryption?

End-to-end encryption is a security tool used by various applications, including Facebook Messenger, WhatsApp and Signal, for further ...

How to disable the "welcome tips" after the Windows 10 update

Windows 10 after an update sometimes opens a window with tips to show you what's new for ...

The Windows 10 KB4586819 update fixes several issues

Microsoft has released the cumulative non-security update KB4586819 preview for Windows 10 versions 1809, 1903 and 1909, with various fixes ...

Drupal websites are vulnerable to double-extension attacks!

The team behind Drupal Content Management System (CMS) released some security updates this week to fix a critical ...

Face recognition can identify bears and cows

Face recognition can be used to identify various animals such as bears and cows!

Google Workspace: How it unlocked the subscription software market

In fact, Google has made it easier for smaller players. A startup that starts in 2020 ...

Black Friday with online offers in COSMOTE and GERMANO

Press Release: Black Friday with online offers at COSMOTE and GERMANO November 23, 2020