Cyber security news for all


    A vulnerability was found in the online collaboration platform Microsoft Teams

    The Microsoft vulnerability exploited a compromised subdomain and a malicious GIF that was sent to team users. There, an attacker could access all the data associated with his team account and spread to other accounts and groups.

    First of all, an attacker has to get a GIF into the team chat. Because he already has access to a team account of the organization or because he manages to convince an account holder to post a GIF created by the attacker in the chat. In addition, the attacker needs control of a subdomain at teams of Microsoft. Large companies have such subdomains that are vulnerable to attack in one way or another. Researchers at Microsoft found many subdomains that could be hacked by incorrect DNS settings.

    Microsoft Teams Vulnerability

    Such a gap would theoretically allow attackers to struggle through an entire company and access tons of sensitive data such as business secrets or passwords of the organizations. Hackers can attack accounts until they have control over a high level employee’s team account and then order to transfer funds or provide financial information. With the calendar functionality integrated in teams, such scams can then be tailored to the everyday work of the organization in order to attract less attention. Especially now that more and more companies are switching to Microsoft teams and similar services and almost all employees are working in the home office, such attacks have a particularly high chance of success.

    To exploit the vulnerability, an attacker would have had to gain access to a Microsoft subdomain. In the past there have been several cases in which the company did not have very good control over the subdomains. An attack would not have been so unlikely. The Microsoft vulnerability has now been fixed. The fix was resolved as soon as possible, as Microsoft has shared its findings with the Security Response Center.

    Recent Articles

    Amazon accounts are the new target of cyber criminals

    Amazon is a popular target for cyber criminals who want to exploit the trust and image of the company among its customers with emails....

    Hackers stole thousands of passport data in Argentina

    In response to millions of dollars ransom refused by the Argentine Immigration Service, a ransomware group released passport data from hundreds of thousands of...

    USA wants to improve cybersecurity of space systems

    CISA has published a table this week that summarizes Chinese activities against cybersecurity. Some attacks have succeeded and enabled hackers to gain a foothold...

    Unknown attackers had access to personal data of Warner Music

    Warner Music Group has admitted a security incident in which customers card details were stolen in some of the company's online stores. Warner Music...

    Donald Trump wants to force a sale of TikTok to Microsoft

    It was recently announced that President Donald Trump plans to prohibit business with the owners of TikTok by decree. The American head of state...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox