Hackers Use Teams to Deploy Stealthier Malware

Hackers use Teams to deploy a newly enhanced version of the Matanbuchus malware loader, cybersecurity researchers warned this week. The upgraded variant includes features designed to improve stealth, allowing it to bypass detection mechanisms more effectively. Matanbuchus, a malware-as-a-service (MaaS) tool, enables attackers to deliver follow-on payloads, including ransomware and Cobalt Strike beacons.

Researchers identified the malware circulating through Microsoft Teams, raising concerns about attackers exploiting trusted enterprise communication platforms. Hackers use Teams deploy tactics to infiltrate targeted networks, masking malicious files as legitimate collaboration tools. The campaign specifically targets firms with the intent to establish a persistent presence and execute secondary attacks.

Initially advertised in February 2021, Matanbuchus has evolved to become a favored delivery mechanism for advanced threat actors. Its growing sophistication underscores the need for organizations to monitor internal communication tools for anomalous activity and reinforce endpoint security strategies.

Read the full article for more details:
https://thehackernews.com/2025/07/hackers-leverage-microsoft-teams-to.html