Credit : Google Image

scammers microsoft team gifs phishing attacks

Scammers   Leveraging Microsoft Team GIFs in Phishing Attack

Credit : Google Image

Cybersecurity   consultant Bobby Rauch has discovered a new attack tactic in which threat   actors exploit Microsoft Teams vulnerabilitie

Credit : Google Image

According to   Rauch, attackers can easily leverage Microsoft Teams GIFs  through these   vulnerabilities to launch phishing, command execution, and  data   filtration schemes.

Credit : Google Image

Rauch has   named the newly discovered attack technique involving MS Teams GIFs as   GIFShell.

Credit : Google Image

The technique   allows attackers to create a reverse shell to facilitate  malicious   command delivery via base64-encoded GIFs in MS Teams.

Credit : Google Image

Using a   malicious stager executable, the attackers can establish their    dedicated MS Teams tenant and start the attack using the GIFShell   Python  script.

Credit : Google Image

GIFShell   installs malware on the device and can sneakily extract data under the guise   of harmless GIF images.

Credit : Google Image

Rauch noted   that the attack entails the exploitation of multiple  vulnerabilities in   MS Teams to create a chain of command executions.

Credit : Google Image

Furthermore,   attackers only need to infiltrate MS Teams and any of the GIFs.

Credit : Google Image

Utilizing   Microsoft’s web infrastructure, they can unpack commands and install them   directly on computers.

Credit : Google Image

Please Share This Stories