New Attack Being Seen With Microsoft Teams Emails
An article published late yesterday details a new phishing attack that impersonates an automated communication message from Microsoft Teams, and tries to get you to click a link to take you to the Teams web interface, where you supply your username and password.
The page looks just like Microsoft’s login page. One of the URLs that has been seen when clicked thru is microsftteams which is close enough to fool the brain if you are not paying attention.
These phishing emails may also be disguised as coming from coworkers which can be easily accomplished by automatically scraping public info from social media sites like LinkedIn.
If you receive an email that appears to be from a teammate, be cautious. Even hovering over the link quickly can fool you.
Director of Security Services
Mainstream Technologies Inc.