Hackers are impersonating IT staff in Microsoft Teams to trick employees into installing malware, giving attackers stealthy access to corporate networks.

ESET researchers document how the Sednit APT group has reemerged with a modern toolkit centered on two paired implants – BeardShell and Covenant.

If an attacker SIM swaps an employee’s number, they may bypass SMS-based MFA protecting corporate email, VPN, and cloud access.

Cyber warfare is coming out of the shadows in the Iran war, from hacking phone apps to recruiting agents online to embracing AI as a weapon.