Microsoft will soon roll out a new security feature in Teams that warns users about external callers posing as trusted companies.
Microsoft wants to combat external callers who pose as trusted companies on Teams with a new security feature. The feature, “Brand Impersonation Protection”, will appear from mid-February and will be enabled by default.
How does it work?
Teams checks incoming VoIP calls from external contacts who are calling for the first time for signals of brand or identity abuse. If an increased risk is detected, the user will receive a warning before the call is answered.
Users can accept, block, or end the call. If new suspicious signals appear during the conversation, the warning may remain active. Microsoft wants to use this to counter social engineering attacks in which criminals pose as companies or government agencies to steal money or sensitive information.
Less work for IT, more preparation needed
According to Microsoft, the new security layer does not require any extra configuration by administrators. However, the company advises organizations to prepare service desks and support teams for questions from end users. The internal documentation and security awareness material should also be adapted. Recently, Microsoft shared that it would improve the default security of Teams and allow companies to block external messages via Defender.