Security experts from the US Navy have created a tool called TeamsPhisher to exploit a recently discovered vulnerability in Microsoft Teams. This flaw allows files sent from external accounts to be received in an organization’s inbox, bypassing the intended prohibition. The tool takes advantage of this vulnerability by tricking Teams into thinking that the external file has been sent from an internal account.
