Phishing attacks on Microsoft Teams

What is this attack about?

It has recently been reported that attackers are exploiting the surge in the use of Microsoft Teams in an attempt to trap unsuspecting users. This is being done by emails being sent out with links to a Team’s meeting. When you click the link you will be taken to a spoofed Microsoft page and asked to log in with your Microsoft credentials. This allows the attackers to steal your username and password and then use it themselves.

How can I avoid it?

  • The first and most important thing is never click a link in an email unless you are 100% sure it's legitimate. This goes for any email, not just Microsoft Teams.
  • Check the email sender, often it will be from a random email address rather than Microsoft. Although this is worth checking we must note that email addresses can be spoofed
  • Check the URL of the link in the email. If it's a real Teams link it should start with
  • If you're still unsure, please contact us and we'll be happy to help

What are we at ITP doing about it?

It’s difficult to combat these sorts of attacks as they often look very legitimate and therefore can bypass spam filters. However, the best way to avoid being hit by these kinds of attacks is to be aware of them and know how to avoid them in the first place. ITP offer a range of Cyber Security help and training so please feel free to get in contact if you’d like us to help protect you.