Hackers can abuse Microsoft Teams updater to install malware

Bleeping Computer

Ionut Ilascu

Microsoft Teams can still double as a Living off the Land binary (LoLBin) and help attackers retrieve and execute malware from a remote location.

Previous efforts from Microsoft to eliminate this hazard work to an extent but cannot stop attackers from abusing Teams to plant and run their payloads.

A patch for the new method is unlikely to emerge, as Microsoft labeled this a design flaw and a fix would have a negative impact on some customers’ operations.

Remote share does the trick
The original method was...

Get the Morning Update

Thanks for subscribing!