Avanan's research into how malicious files are being spread in Microsoft Teams was featured in Threatpost. Hackers are attaching .exe files to Teams conversations. These files can then take over a user's computer. As Threatpost writes:
In the attack vector Avanan researchers observed, attackers first access Teams through one of the aforementioned ways, such as a phishing email that spoofs a user, or through a lateral attack on the network.
Then, the threat actor attaches a .exe file to a chat – called “User Centric” – that is actually a trojan. To the end user, it looks legitimate, because it appears to be coming from a trusted user.
Read the rest of the article at Threatpost.
