Microsoft Teams is one of those applications revalued in this quarantine period. We are all making video calls beyond our means, and there are applications for all tastes. For this reason, cybercriminals have taken advantage of creating phishing in Microsoft Teams and stealing our data.
Unfortunately, phishing attacks are widespread. It is an attack that pretends that we “click” on a link so that the cybercriminal can access personal data. Typically, cybercriminals “work” for it a little, and attacks are quickly identified, but it is worth a warning.
And, as we say, video call applications are currently being used more than ever. And Teams are one of the most useful. Integrated into Microsoft Office 365 suite. Teams are being used in educational and professional environments and are one of the juiciest applications for cybercriminals.
As we read on Windows Central, the new Teams scam is pretty far-fetched. Criminals have cloned the Teams page and sent fake emails to different users. When we click on the link that appears in the email, we go through different URLs. That covers the phishing attack, and then we end up on the Office 365 login page.
By entering our Microsoft session data, attackers can access our account, as they have a username and password. The company Abnormal Security is in charge of investigating the network to find cases of this type. He has been the one that has seen the deception. As they detail, the attack was quite successful:
“The email and landing page were compelling. The links and web pages are visually identical to the legitimate Microsoft ones and the login page. Recipients would have difficulty understanding that these sites were created to deflect attention and steal your credentials. “