Teams Allows Guests by Default – Hackers Cheer

Full original news can be read here >. Fair Use excerpt snippets below focus editor/member commentary and do not infringe on source Copyright.
MC234252 - Configuration Change in Guest access for Microsoft Teams

Author: Microsoft

…Beginning on February 8th, 2021, we are turning on Guest access in Microsoft Teams by default for any customers who have not configured this setting…
…if you want Guest access to remain disabled for your organization, you will need to confirm that the Guest access setting is set to "Off" instead of "Service default"…

Open Source Link >

Editor Comment:
Because MSFT Admin notices are not posted in a public facing site, I am attaching a PDF of the notice below. Cyber threats and indirect hacking attempts have blossomed in the pandemic remote working age. I brought this change up to cyber security guru John Wilson (HaystackID) on a webinar prep call today. He commented that this could be the equivalent of ‘rolling out the red carpet to hackers’. Many corporate sales/marketing/PR/shareholder relations teams are using Teams externally. All it takes is guest access and weak default Teams permissions to invoke/transmit malicious code to jump to a critical internal target.

MC234252_TeamsGuests

0 0 votes

Article Rating

By Greg Buckles|2021-01-20T17:16:16-06:00January 20th, 2021|News, Security|0 Comments

Share This Story, Choose Your Platform!

Facebook Twitter Reddit LinkedIn WhatsApp Email

Subscribe

Notify of

Please register or login to comment

0 Comments

Inline Feedbacks

View all comments

Email Greg Buckles with questions, comments or to set up a short Good Karma call.

Recent Essays, eDJ News & Research

GC Report 2024 – Rapid Change Indeed

Hey Copilot, How Much Does My Boss Make?

Microsoft Moved My Cheese

Doing the eDiscovery C-Suite Shuffle

Time to Truth

Recent Comments
Greg Buckles on M365 Roadmap – eDiscovery Impact
Selective: eDiscovery Journal Highlights X1’s Game Changing Support of MS 365 - Daily News Circuit - Daily News Circuit on eDJ Brief: X1 Enterprise Collects Teams and More
eDiscovery Journal Highlights X1's Game Changing Support of MS 365 - X1 on eDJ Brief: X1 Enterprise Collects Teams and More
More Legalweek 2023 Observations from Attendees on eDJ LegalWeek 2023 Pics and Perspectives
Aaron Taylor on Ready for Teams A.I. ESI?
Active survey/polls
How locked down is your enterprise?
Who trains the tar in your matters?
Categories
Categories

eDJ RSS Feed
GC Report 2024 – Rapid Change Indeed
Hey Copilot, How Much Does My Boss Make?
Microsoft Moved My Cheese
Doing the eDiscovery C-Suite Shuffle
Time to Truth
Archives

April 2024

March 2024

February 2024

January 2024

November 2023

October 2023

September 2023

August 2023

July 2023

June 2023

April 2023

March 2023

February 2023

January 2023

November 2022

October 2022

September 2022

August 2022

July 2022

June 2022

May 2022

April 2022

March 2022

February 2022

January 2022

December 2021

November 2021

October 2021

September 2021

August 2021

July 2021

June 2021

May 2021

April 2021

March 2021

February 2021

January 2021

December 2020

November 2020

October 2020

September 2020

August 2020

July 2020

June 2020

May 2020

May 2019

Disclaimer

Essays, comments and content of this site are purely personal perspectives, even when posted by industry experts, lawyers, consultants and other professionals. Greg Buckles and moderators do their best to weed out or point out fallacies, outdated tech, not-so-best practices and such. Do your own diligence or engage a professional to assess your unique situation.