Share this article
Improve this guide
Phishing attack hits thousands of Microsoft Teams users
3 min. read
Updated onApril 11, 2022
updated onApril 11, 2022
Share this article
Improve this guide
Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more
Key notes
The researchers at Abnormal Security released a report about a recentphishingattempttargeting up to 50,000 Microsoft Teams clients.
This adds to thestatisticsthat showed increased numbers in this type of cyber-attacks that affected companies in online payment businesses, social media, or productivity services in today’s context of teleworking or homeschooling.
Considering thatMicrosoft Teamsis the most popular business communication service presently, with over 75 million users reported in spring 2020, it becoming a target for such attacks comes as no surprise.
How does the phishing scam work on Microsft Teams accounts?
According to thereport, the attackers impersonated an acquaintance of the recipient sending out an email with a subject line resembling an instant messaging notification, announcing new activity on the platform.
This way, the attackers emailed between 15,000 and 50,000 Teams members, trying to catch their attention and make them hit theReply in Teamsbutton.
The body of the email included what appeared to be an instant messenger box linked to a particular workgroup, a request, and theReply in Teamsbutton.
Clicking on any of these led to a fake Microsoft login page. The phishing page asked the recipient to enter their email and password.
In case the recipient went along with the request, the attackers could get their credentials or any personal information stored on the respective account.
How can I avoid falling for phishing scams?
Such phishing scams include all the ingredients that make users vulnerable: branded URL, personalized salutation message, convincing design.
If one doesn’t pay too much attention to the source of such messages, the second most reliable way to prevent scams is using powerful software such asBitdefenderthat protects against phishing attempts.
Bitdefender efficiently filters all incoming email messages, as well as all websites that pose as trustworthy asking for personal information, by blocking them before they can reach the user.
Bitdefender Antivirus Plus
We truly hope that now you are now better informed on how such attacks work and that you’ll be prepared in case of a phishing attempt on your own device.
Your feedback on this topic is welcome; use the comments section below.
[wl_navigator]
More about the topics:Microsoft Teams,Phishing
Sinziana Mihalache
Sînziana loves getting people to better understand products, processes, and experiences beyond a simple user guide, either in writing or making use of images. She joined the team after a long-term collaboration with one of the world’s top cybersecurity companies - Bitdefender. Outside work, Sînziana enjoys climbing mountains, backpacking around the world, and writing about almost anything on her blog.
User forum
0 messages
Sort by:LatestOldestMost Votes
Comment*
Name*
Email*
Commenting as.Not you?
Save information for future comments
Comment
Δ
Sinziana Mihalache
