Search
  • Queenie Siah

Microsoft Teams fixes funny Gifs cyber-attack flaw

Like many chat apps, Teams let colleagues send each other whimsical animated Gif images.


But CyberArk researchers discovered a problem that meant viewing a Gif could let hackers compromise an account and steal data. Microsoft has since patched the security hole, researchers said.


This attack involves using a compromised subdomain to steal security tokens when a user loads an image - but the end-user would just see the Gif sent to them, and nothing else.


"They will never know that he or she has been attacked - making this vulnerability... very dangerous," the team said.


It is a good demonstration of a zero-click attack - no clicking of links, the opening of documents, thus all software should be updated as there are bound to be security flaws occasionally.


https://www.bbc.com/news/technology-52415773?intlink_from_url=https://www.bbc.com/news/topics/cz4pr2gd85qt/cyber-security&link_location=live-reporting-story


3 views

Recent Posts

See All

Unwanted permissions in apps?

There have been many instances, when we first download an app, various permissions start popping up. Be it for contact list, photo gallery, there seem to be many more. This has made many users paranoi

©2020 by Sieve

Get In Touch

Our Singapore Office

*SCAPE HubQuarters, Level 4

2 Orchard Link

Singapore 237978

Our UK Office

Geovation Fourth Floor, Sutton Yard

65 Goswell Rd

London EC1V 7EN

United Kingdom

Get Notified of Our July Launch!