Cyber attackers are evolving their phishing tactics to target corporate employees by weaponizing not only emails but also enterprise instant messaging platforms. Researchers have uncovered a sophisticated social engineering campaign conducted via Microsoft Teams that distributes Black Basta ransomware.

This new attack chain, designed to bypass traditional security controls, begins with an “email bombing” technique, where the victim’s inbox is flooded with thousands of messages. Exploiting the confusion caused by this flood, attackers then contact the user via Microsoft Teams, impersonating a company “IT Support Specialist.” Taking advantage of the employee’s panic, the attackers offer to resolve the issue and trick the victim into downloading malware such as DarkGate or Zbot onto their system. Experts emphasize that attackers are rapidly evolving to exploit employee trust, and that standard phishing filters may be insufficient against such internal platform-based communications.

For detailed information, you can reach out to our experts at info@zerosecond.com.ae