As the use of collaborative platforms continues to tick up as people work from home during the Covid-19 pandemic, hackers are sending fake email notifications that appear to come from Microsoft Teams in an effort to steal employee credentials.

“These attackers crafted convincing emails that impersonate automated notification emails from Microsoft Teams,” Abnormal Security researchers wrote in a blog post, noting the landing pages hosting the attacks “look identical to the real webpages, and the imagery used is copied from actual notifications and emails from this provider.”

To avoid detection, the attackers mask the host URL through multiple URL redirects. Email recipients clicking attempting to log into Teams through the URL provided are redirected a number of times, finally landing on a web page asking for Microsoft login credentials.

Please register to continue.

Already registered? Log in.

Once you register, you'll receive:

  • News analysis

    The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.

  • Archives

    Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.

  • Daily Newswire

    SC Media’s essential morning briefing for cybersecurity professionals.

  • Learning Express

    One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.