Protect from phishing in MS Teams
Yesterday I received an odd message on MS Teams (a phishing attempt) that I've not seen before.
The message is made to look like it includes 2 parties; 1 internal and 1 external, in addition to myself.
However, the 2 parties are actually 1 external party - with a display name set to make it look like this message may be a legitimate collaboration.
They also shared a link which differed from its target (further evidence that this was suspect rather than legit).
Our company's InfoSec team were informed / confirmed that this wasn't them testing us. They've blocked the URIs, but it seems that in Teams if you want to allow collaborating with external parties there aren't many more options to block this sort of thing until we've seen the attempt.
I also tried to report to MS via msrc.microsoft.com/report; but they don't seem to have an option for reporting phishing via Teams.
Is there anything that can be done to proactively prevent this sort of attack; even if as simple as blocking (Internal) from being used in a display name, if you want to allow external parties to connect?
