{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreieofi6xbt64evn6w6lms46z5vswo7zhljnijh6whytf45lt3ie47q",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3ml7eeszv65k2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreifvwxiv34737y2pxou7ret24drcn7gzoga3ncumx7jslxbnkjntjq"
    },
    "mimeType": "image/webp",
    "size": 13692
  },
  "path": "/iran-linked-hackers-used-microsoft-teams-chats-to-steal-credentials-and-manipulate-mfa/",
  "publishedAt": "2026-05-06T18:04:32.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Iran-linked hackers used Microsoft Teams chats to steal credentials and manipulate MFA",
    "VPN Central"
  ],
  "textContent": "Iran-linked threat actors used Microsoft Teams as the opening move in a targeted intrusion that looked like a Chaos ransomware attack but behaved more like espionage. Rapid7 assessed with moderate confidence that the activity was linked to MuddyWater, also known as Seedworm, Mango Sandstorm, and Static Kitten. The attackers contacted employees through external Teams chats, […]\n\nThe post Iran-linked hackers used Microsoft Teams chats to steal credentials and manipulate MFA appeared first on VPN Central.",
  "title": "Iran-linked hackers used Microsoft Teams chats to steal credentials and manipulate MFA"
}