Microsoft Teams has a new exploit, known as TeamsPhisher, that allows for External users to your organisation to inject malware into your SharePoint site and then sends you a link to it within Teams.
As of 8/7/2023, Microsoft is working on a patch and to protect yourself in the interim, it’s recommended to:
– Disable External User communication on your Office 365 tenancy or;
– Block External User communications except for whitelisted domains.
If you require any assistance, please don’t hesitate to contact us.