![]() ![]() Researchers say one of the root causes for the vulnerability is that the Microsoft Teams is an Electron-based app, where Electron works by creating a web application that runs through a customized browser and makes development easier.īut for running a web browser needs browser data like cookies, session strings, and logs. Generally Microsoft Teams App stores authentication tokens in ‘cleartext’ and with these tokens, attackers can guess the token holder’s identity for any actions possible through the Microsoft Teams client.įurther, the stolen tokens let threat actors to attack against ‘MFA-enabled accounts’, creating an ‘MFA bypass’, says Vectra researchers. ![]() ![]() Teams primarily compete with the similar service Slack, offering workspace chat and videoconferencing, file storage, and application integration. Microsoft Teams is a proprietary business communication platform developed by Microsoft, as part of the Microsoft 365 family of products. Severe Security Flaws in the Desktop App for Microsoft Teams ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |