Russian Hackers Exploit Microsoft Teams for Government Agency Breaches
Russian state-sponsored hacking group APT29, also known as Cozy Bear, used a social engineering campaign on Microsoft Teams to compromise dozens of global organizations, including government agencies. The hackers posed as technical support staff and sent messages to manipulate users into granting approval for multi-factor authentication prompts, allowing them to gain full access to user accounts and exfiltrate sensitive information. Microsoft has mitigated the use of the domains and is investigating the activity, which targeted fewer than 40 organizations across various sectors. This incident follows recent Chinese hacking exploiting a flaw in Microsoft's cloud email service.
- Russia-backed hackers used Microsoft Teams to breach government agencies TechCrunch
- Microsoft says Russia-linked hackers behind dozens of Teams phishing attacks Reuters
- Microsoft Exposes Russian Hackers' Sneaky Phishing Tactics via Microsoft Teams Chats The Hacker News
- Russian hackers target govt orgs in Microsoft Teams phishing attacks BleepingComputer
- How Russia-linked hackers launched their latest attack using Microsoft Teams ITPro
- View Full Coverage on Google News
Reading Insights
0
1
1 min
vs 2 min read
71%
330 → 96 words
Want the full story? Read the original article
Read on TechCrunch