Microsoft Teams
Coverage of Microsoft Teams in the Nexus archive.
- job offer from gov.br? [US]
A user received a suspicious job offer email from a .gov domain claiming a remote position with a $35/hr pay rate, requiring contact via Microsoft Teams. The email included a Teams meeting link and instructions to schedule an interview, followed by a no-caller-ID phone call. The sender's name was in Portuguese, and the job was stated to be for U.S. and Canadian residents only.
- Fake IT support calls on Microsoft Teams push EtherRAT malware
Threat actors are using Microsoft Teams voice calls to impersonate corporate IT support staff, tricking employees into installing EtherRAT malware. This malware grants attackers initial access to corporate networks.
- [US] Possible Job Offer Scam?
A user received a job offer via ZipRecruiter after a virtual screening interview conducted through Microsoft Teams. The interview was text-only, followed by requests for personal information, an ID photo, and signed documents. The user is unsure if the offer is legitimate due to potential scam indicators.
- Am I being paranoid?
A user applied for a remote healthcare IT position at Optimum Health IT, which offered $55/hour. The interview was conducted via Microsoft Teams text, with the recruiter's account occasionally 'deactivated.' The job offer letter, containing minor grammatical errors, requested personal information including the last four digits of the applicant's SSN, raising suspicion.
- Microsoft adds smarter bot protection to Teams meetings
Microsoft has introduced a new policy for Microsoft Teams that allows meeting organizers to block third-party bots from joining meetings without approval. This feature aims to enhance security by preventing unauthorized bots from accessing meetings.
- Microsoft builds a bouncer to keep bots out of Teams meetings
Microsoft has introduced a system to prevent unauthorized bots from joining Teams meetings by requiring human approval for bot entry. The technology uses behavioral and infrastructure signals to distinguish bots from humans, with plans to allow registered bots from verified developers to join meetings automatically.
- Job scams are getting more sophisticated, and they’re costing Americans millions
Job scams are becoming more sophisticated with AI-driven tactics, leading to millions in losses for Americans. Mary Ann Morrison encountered a realistic scam from a fake University of Arkansas recruiter, highlighting the challenges of distinguishing legitimate opportunities. Reports of employment scams increased significantly, with losses rising from $90 million to $501 million between 2020 and 2024.
- [US/UK/CL]Am I being Scammed? https://northbridgescapital.com/
A user received an email from Macmillan Publishers Ltd. offering a translation job with high pay, but became suspicious after the contact redirected them to a non-existent website (Northbridges Capital) for payment verification. The user hesitated to share personal ID due to red flags like an unverified platform, lack of physical address, and suspicious communication channels.
- Is the job I applied for on LinkedIn a scam? (US)
A user applied for a remote job on LinkedIn and received an interview invite with a Microsoft Teams link and a hiring manager's email. The link directed to a chat instead of scheduling, the hiring manager's profile couldn't be found online, and the job wasn't listed on the company's website. The user suspects a scam and seeks advice.
- [US] Received a scam email to set up an interview with Zendesk - What is the end goal?
A scam email purporting to be from Zendesk Inc was sent to a user, requesting confirmation of their contact email to schedule a Microsoft Teams interview. The email originated from a Gmail account named FirstnameLastname20, raising suspicions of phishing or fraudulent intent.
- US potential job interview scam
A user received three job interview emails, two from a known company and one from an unknown company, with confusing scheduling steps requiring download of Microsoft Teams or Zoom and a reference number. The user suspects it is a new scam and is seeking information.
- DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic
Threat actors linked to DragonForce ransomware used Backdoor.Turn, a custom Go-based remote access trojan, to conceal command-and-control traffic via Microsoft Teams relay infrastructure. The malware was deployed against a major U.S. services firm, according to Symantec and Carbon Black.
- Ransomware gang abuses Microsoft Teams relays to hide malicious traffic
The DragonForce ransomware gang used a custom malware named 'Backdoor.Turn' to conceal command-and-control traffic within Microsoft Teams' relay infrastructure. This method allowed malicious activity to evade detection by leveraging legitimate communication channels.
- Accidentally deleted subscriptions for chat integrations (Slack and MS Teams)
GitHub accidentally deleted subscriptions for chat integrations with Slack and Microsoft Teams, as reported on their status page. The incident is discussed on Hacker News with 71 points and 26 comments.
- Microsoft Scout is a new AI personal assistant built on OpenClaw
Microsoft Scout is a new AI personal assistant built on OpenClaw, designed to integrate into Microsoft 365 apps like Outlook, OneDrive, and Teams. It assists with tasks such as organizing calendars, expense reporting, and email drafting, offering broader capabilities than Microsoft's Copilot. Corporate vice president Omar Shahine described it as the first real personal assistant offered by Microsoft.
- Microsoft investigates Office Apps, Teams file access issues
Microsoft is investigating issues preventing users of Teams and Office for the web from opening files. The ongoing incident affects file access in these platforms.
- Cyber attackers are hijacking Microsoft Outlook, Teams and 365 log-ins, FBI says
The FBI has issued a public warning about a new phishing tool that allows cyber attackers to access Microsoft 365 user accounts without requiring passwords. This tool is being used to hijack log-ins for Microsoft Outlook, Teams, and 365 services.
- The EU Is Going Through a Trump-Fueled Breakup With Big Tech
The European Union is reducing its dependence on major U.S. technology companies like Zoom and Microsoft Teams, with France leading the way by adopting homegrown alternatives. This shift appears to be influenced by Trump-related policies and reflects a broader European effort to develop sovereign digital infrastructure.
- ZTE Showcases AI Interactive Flat Panel at the Broadband User Congress in Brazil
ZTE showcased its AI Interactive Flat Panel at the Broadband User Congress in Brazil, unveiling three core intelligent solutions for office, elderly care, and education scenarios. The product is integrated with mainstream cloud conferencing platforms and features AI-powered assistants. ZTE aims to deepen cooperation with operators and ecosystem partners to build a new future of smart connectivity worldwide.
- Cybercriminal Twins Caught After They Forgot to Turn Off Microsoft Teams Recording
Cybercriminal twins were caught after forgetting to turn off a Microsoft Teams recording, and other cybercrime stories unfolded including an alleged dark net market kingpin's arrest and OpenAI workers falling victim to a supply chain attack. The Instructure’s Canvas ransomware incident also came to a close. These events highlight the ongoing issues in cybersecurity.
- Fired hacker twins forget to end Teams recording, capture own crimes
Twin brothers Muneeb and Sohaib Akhter were fired by federal IT contractor Opexus and then deleted 96 US government databases, capturing their own crimes on a Microsoft Teams recording. The brothers had previously been in prison for cyberfraud. They are now in serious trouble for their actions.
- KongTuke hackers now use Microsoft Teams for corporate breaches
KongTuke hackers are using Microsoft Teams for social engineering attacks to gain access to corporate networks, taking as little as five minutes to achieve persistent access. The group, an initial access broker, has shifted its tactics to exploit the popular communication platform. This change in strategy allows them to breach corporate security more efficiently.
- MuddyWater hackers use Chaos ransomware as a decoy in attacks
MuddyWater Iranian hackers used Chaos ransomware as a decoy in their attacks, gaining access through Microsoft Teams social engineering and establishing persistence. The attackers relied on this tactic to disguise their operations. This approach allowed them to deceive targets about the true nature of the attack.
- MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack
MuddyWater, an Iranian state-sponsored hacking group, has been attributed to a false flag ransomware attack that leverages social engineering techniques via Microsoft Teams. The attack was observed by Rapid7 in early 2026 and initiates the infection sequence. MuddyWater is also known as Mango Sandstorm, Seedworm, and Static Kitten.
- Microsoft’s Office and LinkedIn chief now runs Teams in latest reshuffle
Microsoft's LinkedIn CEO Ryan Roslansky is taking on an expanded role as head of a new Work Experiences Group, including Microsoft Teams. This change is part of a broader reshuffle triggered by Rajesh Jha's retirement. Roslansky will lead the new group after previously expanding his role to include Office last year.
- UNC6692 Combines Social Engineering, Malware, Cloud Abuse
A new threat actor named UNC6692 is leveraging Microsoft Teams, AWS S3 buckets, and custom 'Snow' malware in a coordinated campaign combining social engineering, malware, and cloud infrastructure abuse.
- Hackers impersonate Microsoft Teams help desk to breach corporate networks
Hackers are impersonating Microsoft Teams help desk workers to trick victims into installing data-stealing malware, according to researchers. This tactic has been used to breach corporate networks and compromise sensitive data.
- Threat actor uses Microsoft Teams to deploy new “Snow” malware
A threat group named UNC6692 is using social engineering to deploy a new malware suite called 'Snow' through Microsoft Teams. The malware includes a browser extension, a tunneler, and a backdoor.
- Crime crew impersonates help desk, abuses Microsoft Teams to steal your data
A previously unknown threat group is using Microsoft Teams chat invitations and helpdesk staff impersonation to deploy custom Snow malware in data-stealing attacks, as reported by Google's Threat Intelligence Group.
- UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
A previously undocumented threat group named UNC6692 has been using Microsoft Teams to impersonate IT helpdesk employees and deploy a custom malware suite called SNOW. The attackers trick victims into accepting Teams chat invitations from fake accounts to compromise their systems.
- Microsoft: Some Teams users can’t join meetings after Edge update
Microsoft confirmed a recent Microsoft Edge update caused a bug preventing Windows users from joining Microsoft Teams meetings. The issue affects Teams users on Windows systems following the browser update.
- Bring your own Agent to MS Teams
Microsoft Teams is introducing a feature allowing users to integrate their own AI agents into the platform, enhancing collaboration and automation capabilities. The update is detailed in a blog post by the Microsoft Teams SDK team, with no immediate public feedback yet.
- Google Meet will take AI notes for in-person meetings too
Google's AI meeting notetaker, powered by Gemini, now supports in-person meetings and third-party platforms like Zoom and Microsoft Teams. Previously limited to alpha Android users, the feature allows seamless transitions to video calls if needed and works for both scheduled and impromptu meetings.
- Microsoft Teams to get efficiency mode on PCs with limited resources
Microsoft is introducing an Efficiency Mode for Microsoft Teams on PCs with limited CPU and memory resources to enhance app performance. The feature aims to improve responsiveness for systems with constrained hardware.
- Microsoft Teams is trying to fix accidental hand-raising
Microsoft is redesigning Microsoft Teams to move the 'raise hand' feature under the 'Reactions' button in the main toolbar to prevent accidental clicks. The update, announced on the Microsoft 365 Roadmap, is expected to launch in June 2024.
- Microsoft: Teams increasingly abused in helpdesk impersonation attacks
Microsoft is warning that threat actors are increasingly exploiting Microsoft Teams for helpdesk impersonation attacks, using legitimate tools to gain access and move laterally within enterprise networks. The abuse highlights growing security risks associated with collaboration platforms.
- Microsoft pulls service update causing Teams launch failures
Microsoft has reverted a recent service update that was causing some users to be unable to launch the Microsoft Teams desktop client. The issue has been addressed by rolling back the update to resolve the launch failures.
- Microsoft Teams right-click paste broken by Edge update bug
A recent Microsoft Edge browser update introduced a bug that disrupts the right-click paste functionality in Microsoft Teams desktop client chats. Microsoft has issued a warning about the issue affecting user experience.
- DeepL, known for text translation, now wants to translate your voice
DeepL, a company renowned for its text translation services, is expanding into voice translation. The company aims to integrate its technology with real-time meeting tools like Zoom and Microsoft Teams.