Cybercriminals are constantly looking for new scams to trick people into sharing information or granting access. Recently, a new method has appeared with scammers reaching out through Microsoft Teams.
What's Happening?
If you use Microsoft Teams, particularly the “New Teams” interface, you may notice messages from external contacts or invitations to collaborate in what appear to be internal groups. These requests can look very convincing, as they are often sent from real domains within Microsoft’s network. At first glance, they may seem genuine.
Because the invitations originate from authentic Microsoft domains, it can be easy to mistake them for legitimate requests. Acting on these could expose sensitive information or create security risks.
A Real World Example
One client recently reported that a third party had registered a domain name nearly identical to their own. Using the client’s ABN, the scammers reached out to their customers directly!
This highlights how sophisticated these attempts are becoming, and why it’s so important to remain vigilant.
How to Protect Yourself
The best defensive against all scams is to proceed with caution.
- Pause before you act. If something feels unexpected or suspicious, don’t engage with it—stop and investigate further.
- Verify through a reliable source. Always confirm requests via a known, trusted contact method (for example, call a verified phone number or email an official address you already use).
- Report concerns. If you receive a message that seems unusual, contact your IT support for advice.
Treat all unexpected digital contact with suspicion until proven otherwise. Staying cautious is the best defense against these evolving scams!
