Security experts from Trustwave showed a threat actor which enbles abuse of the MS Teams Updater to download any binary or malicious payload from a remote server. An attacker could exploit it if the following conditions are met when the hacker has access to:
– the file inside the network in an open shared folders;
– the payload from that share to the victim machine;
This attack scenario is difficult to implement but still feasible.
Read more about this topic at: https://securityaffairs.co/wordpress/106821/hacking/microsoft-teams-updater-malware.html?