Guest Post: Darktrace Discusses A Sophisticated Phishing Campaign Leveraging Microsoft Teams

With the move to remote working having surged, the number of active daily users on Microsoft Teams has grown to 75 million, up from 20 million this time last year. Similar trends are being seen across Slack, Zoom, and Google Meet. With these SaaS applications becoming a staple in Canadian’s working lives, businesses should anticipate cyber-criminals to begin leveraging their household names and trusted reputation to launch email attack campaigns.

Darktrace’s AI, Antigena Email, picked up on one such attempt last month while deployed in passive mode at a multinational conglomerate – identifying 48 incoming emails that impersonated a Microsoft Teams notifications, but in fact came from an unknown sender and rare domain. The attacker was targeting employees alphabetically, seemingly working methodically through the address book.

With so much of the Canadian workforce moving to a more long-term work from home arrangement – and conference calls utilizing programs like Microsoft Teams a big part of the day-to-day – it’s imperative for businesses to safeguard themselves against threats. 

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: