As more remote work from home happens, your collaboration tools need more scrutiny. A popular choice for instant messaging and video conferencing is Microsoft’s Teams, and securing this application will be a challenge.
Teams already has had one major exploit that would allow a malicious actor to use the Microsoft Teams Updater to download any binary or malicious payload. Researchers discovered it earlier this summer by using a workaround for a previous patch issued for Teams. The exploit involves many steps: It leverages a remote Server Message Block (SMB) share to bypass limitations placed on Teams to update via a URL.