Microsoft Teams phishing attack pushes DarkGate malware

Cybersecurity researchers have discovered a phishing campaign using Microsoft Teams messages to deliver DarkGate Loader malware. The attackers sent the malicious messages through compromised Office 365 accounts, tricking recipients into downloading a ZIP file named “Changes to the vacation schedule.” The file contains malicious VBScript that triggers DarkGate’s installation. Despite previous reports of similar attacks, Microsoft has not addressed the risk, instead recommending safe configurations and disabling unnecessary external access.