Microsoft Teams app is seen on the smartphone placed on the keyboard in this illustration taken, July 26, 2021.
REUTERS/Dado Ruvic/File PhotoSAN FRANCISCO, Aug 2 (Reuters) - A Russian government-linked hacking group took aim at dozens of global organizations with a campaign to steal login credentials by engaging users in Microsoft Teams chats pretending to be from technical support, Microsoft researchers said on Wednesday.
These "highly targeted" social engineering attacks have affected "fewer than 40 unique global organizations" since late May, Microsoft researchers said in a blog, adding that the company was investigating.
The hackers used already-compromised Microsoft 365 accounts owned by small businesses to make new domains that appeared to be technical support entities and had the word "microsoft" in them, according to details in the Microsoft blog.
Accounts tied to these domains then sent phishing messages to bait people via Teams, the researchers said.
Persons:
Dado, Washington didn't, Midnight Blizzard, Zeba Siddiqui, Gerry Doyle
Organizations:
Microsoft, REUTERS, FRANCISCO, Midnight, Thomson
Locations:
Russian, Washington, Russia, U.S, Europe, San Francisco