Ransomware Exploits Microsoft Teams: New Threats Target Organizations

January 23, 2025Source: Cybersecurity News

Found this useful? Share it with your network

Sophos Managed Detection and Response (MDR) has reported on two ransomware campaigns, labeled STAC5143 and STAC5777, that leverage Microsoft Teams vulnerabilities to breach organizational security. These campaigns exploit Teams' default settings that allow external users to engage with internal users, employing tactics such as spam emails and IT impersonation to convince victims to install harmful software. The STAC5143 campaign uses advanced tools like obfuscated JAR files and Python backdoors for system compromise, relying on covert methods to connect to command and control servers. In contrast, the STAC5777 campaign integrates malicious elements into legitimate software, notably by side-loading a harmful DLL through OneDriveStandalone.

Read Full Article

Opens on Cybersecurity News

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News