- False Teams Site provides oysters malware via SEO poisoning and misleading ads
- SPOOFED PAGE mimic Microsoft’s design that fools users to download malware
- Best Defense: Type of known URLs directly, avoid relying exclusively on search results
If you want to install the Microsoft Teams platform, be very careful about how to navigate the page downloads, as experts have warned about a new malicious campaign that fools people to download malware instead.
Security researchers from Blackpoint SOC recently discovered a fraudulent Microsoft-team download page hosting team installation[.]top. It looks almost identical with the legitimate Microsoft site with the color, designs and fonts, all similar to the actual place.
Instead of downloading the popular communication platform, however, the victims are served The Oyster Backdoor, a well -known piece of malware that gives attackers full access to the compromised end point.
SEO -Poisoning and Malverning
The site is optimized for search engines, a practice known as “SEO poisoning”. People searching for “Hold Download” (and probably a few other keywords) find the forged place at the top of their search results right next to the legitimate.
If a user is not careful, it is quite easy to end in the wrong place and download malware instead of the actual program.
To make things worse, they also managed to create a few ads on the Internet, which also appears to appear at the top of the search engine results.
SEO poisoning and maltering campaigns like this work well because it is a fairly common behavior to search for well -known websites and programs, rather than writing the address in the browser’s address beam.
Many users treat Google as their “front door” on the Internet. For example, in 2024, YouTube was the most searched expression on Google Worldwide, closely followed by the WhatsApp web.
In the United States, Amazon led search trends to YouTube. All of these platforms are recognized globally and can all be accessed by writing their .com domain in the browser.
This is also the best way to defend against SEO poisoning and malvertising – not blind confidence in the search engine results, and navigate to as many places as you can – directly through your browser.
Via Bleeping computer
