Teams could be exploited through remote malicious code execution

Security experts from Trustwave showed a threat actor which enbles abuse of the MS Teams Updater to download any binary or malicious payload from a remote server. An attacker could exploit it if the following conditions are met when the hacker has access to:

– the file inside the network in an open shared folders;
– the payload from that share to the victim machine;
This attack scenario is difficult to implement but still feasible.

Read more about this topic at: