)Fake Microsoft Teams Download Scam
It was Microsoft calendar scams earlier in the year. It now appears that Microsoft Teams is a target of cyberattacks.
It has been reported that a ransomware group is using fake ads to impersonate Microsoft Teams. The ads appear to be official download links for Teams, but instead of installing the real app, you’ll be installing malware called OysterLoader. Once it’s on your device, it opens the door for attackers to gain access to your system and network.
Experts say the scammers are buying Bing search ads that send people to realistic but fake download pages. It’s a repeat of something the same group has done before by creating fake sites for Zoom.
The scammers are using real-looking code-signing certificates, the same kind used by legitimate software publishers. That makes the fake downloads seem trustworthy, even to security tools. They’re also using another type of malware called Latrodectus to break into networks. And somehow, they’ve even managed to use Microsoft’s own Trusted Signing service to make their attacks look more authentic.
What You Can Do
Only download Microsoft Teams from Microsoft’s official site or app store.
Be extra careful with sponsored search results – they’re often the bait.
Make sure your antivirus and security software are up to date.
At BizWiseIT, we’re helping businesses across Crawley, Gatwick, and the West Sussex region stay one step ahead of these kinds of scams. If you’d like a quick security check or advice on protecting your systems, get in touch – we’re here to help and love supporting local.
Photo Credit: Image Designed by Freepik (www.freepik.com)
