{"id":1578,"date":"2020-04-29T13:18:00","date_gmt":"2020-04-29T13:18:00","guid":{"rendered":"https:\/\/cisobyte.com\/?p=1578"},"modified":"2020-04-29T22:13:37","modified_gmt":"2020-04-29T22:13:37","slug":"update-teams-today-to-avoid-malicious-gifs","status":"publish","type":"post","link":"https:\/\/cisobyte.com\/index.php\/2020\/04\/29\/update-teams-today-to-avoid-malicious-gifs\/","title":{"rendered":"Update Teams Today to Avoid Malicious GIFs"},"content":{"rendered":"

CISObyte    04-29-2020<\/strong><\/h4>\n

<\/p>\n

A vulnerability involving compromised subdomain hosting malicious GIFs has been patched in Microsoft Teams.<\/h4>\n

“All a user had to do was view the GIF to allow an attacker to scrape data from their account.”<\/h2>\n

I’ll go on forever preaching Patch Management, it may be the most banal task, but it is also one of the most important functions in establishing a hardened security posture.  “As more and more business is conducted from remote locations, attackers are focusing their efforts on exploiting the key technologies \u2013 like Zoom and Microsoft Teams \u2013 that companies and their employees depend on to stay connected.” “The amount of data that goes into these applications is enormous and often includes confidential information from user names and passwords to top-secret business information \u2013 making them prime targets for attackers.” “While limiting your organization to internal communication will reduce your exposure, we found that it is still possible to communicate with an outsider and any interaction that includes a chat interface with an outsider is enough to be affected by this vulnerability.” “The victim sees a regular GIF sent to them \u2013- that\u2019s it!” “The victim will never know that they\u2019ve been attacked, making the exploitation of this vulnerability stealthy and dangerous.”<\/p>\n