Hackers Using Microsoft Teams to Deliver DarkGate Malware

Cybercriminals have been using Microsoft Teams to deliver DarkGate Loader malware, which was traditionally spread through email. These attacks originated from two compromised external Office 365 accounts and were facilitated through an HR-themed social engineering chat message containing an externally hosted Sharepoint link. If accessed, this link initiates a sequence of actions leading to the downloading and execution of the malware.