Recently (2022/09/16), security researchers discovered a flaw within Microsoft Teams that allows hackers to extract an account authentication token extremely easily.
While the style of attack isn’t unique, hackers are known for using this kind of technique to bypass multifactor authentication, masquerade as legitimate users, and steal information from organizations.
Even with how easy this attack is, Microsoft said this “does not meet our bar for immediate servicing as it requires an attacker to first gain access to a target network.”
There are some measures we’ve put in place to help mitigate hackers leveraging this kind of attack, including monitoring what is accessing these tokens and ensuring our security tools are configured to prevent malicious access to the tokens.
If you have any questions or concerns, please do not hesitate to contact us.