image credit: maxpixel
COVID-19 has spurred the use of videoconferencing for businesses worldwide – and this expanded threat surface has lured attackers like moths to a flame. Adding insult to injury, researchers have recently discovered a workaround for a previous patch issued for Microsoft Teams, that would allow a malicious actor to use the service’s updater function to download any binary or malicious payload.
Essentially, bad actors could hide in Microsoft Teams updater traffic, which has lately been voluminous.
Comments are closed.
