ADVERTISEMENT

Hackers leveraging Teams to drop malware, steal data, Microsoft warns

Microsoft has warned about hackers taking advantage of its collaboration platform, Teams. Attackers use Teams to gather information, trick users into sharing sensitive data, impersonate trusted sources, deliver malware through messages and calls, and even steal credentials, exfiltrate data, and maintain persistence.

Microsoft Teams

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Oct 8, 2025 Updated: 9 October 2025 4 min read

Swiss army knife for hackers

jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
teams-under-attack
ADVERTISEMENT
  • Storm-1674, an access broker, has used sophisticated red teaming tools, like TeamsPhisher, to distribute DarkGate and others.
  • A threat actor impersonated a client during a Teams call to persuade a target to install the remote access tool AnyDesk, which was later used to deploy malware.
  • Hackers can direct users on Team to malicious websites.
  • Widely available admin tools, such as AADInternals, could be leveraged to deliver malicious links and payloads directly into Teams.
  • Malicious ads in search results misdirect users to fake download sites hosting credential-stealing malware, spoofing Teams.
Hacker stealing data from a computer
Image by Cybernews.

Access leads to data theft

Has my data been leaked?

ADVERTISEMENT