Iran-linked hackers used Microsoft Teams chats to steal credentials and manipulate MFA

Iran-linked threat actors used Microsoft Teams as the opening move in a targeted intrusion that looked like a Chaos ransomware attack but behaved more like espionage. Rapid7 assessed with moderate confidence that the activity was linked to MuddyWater, also known as Seedworm, Mango Sandstorm, and Static Kitten. The attackers contacted employees through external Teams chats, […] The post Iran-linked hackers used Microsoft Teams chats to steal credentials and manipulate MFA appeared first on VPN Central.