Thank you for your interest in Obsidian! Please enter your information in the form and we will contact you shortly to schedule a demo.
The phishing exploit in Microsoft Teams, as revealed by Max Corbridge and Tom Ellson from JUMPSEC’s Red Team, is a significant and subtle vulnerability inherent in the platform’s default configuration. This means most organizations using Microsoft Teams are vulnerable unless they have taken explicit steps to prevent it. The exploit takes advantage of the feature that allows communication between different tenants in Teams, enabling malicious actors to impersonate trusted external contacts and launch devastating phishing attacks.
This blog details what exactly the exploit is and how to implement proactive measures based on your unique Teams instance that will minimize risk without causing any surprise disruptions to business operations. With complete visibility and control of their Microsoft application suite, Obsidian customers can easily leverage our platform to limit the likelihood and blast radius of a security incident related to this vulnerability.
This Teams phishing exploit is particularly concerning due to the potentially damaging level of access it provides and the subtle nature which makes it difficult to detect. The default configuration of Teams allows tenants to communicate freely, even without mutual allowance. This enables an external party to contact your organization, potentially impersonating trusted individuals or entities in order to carry out a phishing attack. Unless explicit steps are taken to mitigate this vulnerability, the danger will be present for organizations leveraging Teams.
The appropriate mitigation method will be dependent on your organization’s unique risk tolerance levels and Teams use cases. It boils down to a simple question – do you need communication with external tenants for any reason?
For organizations requiring external tenant communication but only with select domains, a strategy of selective accessibility can help minimize risks without slowing down business.
To configure your settings:
Obsidian can support your organization in maintaining a secure Teams environment. As a leading suite of productivity applications inclusive of Teams, Microsoft 365 handles a wide variety of your organization’s critical business data, putting it at high risk for malicious attackers, insider threats, and accidental exposure. Obsidian protects Microsoft 365 by helping security teams harden configurations, manage privileged access, and identify potential threats quickly. Schedule a demo today to see for yourself.