Initial access broker Storm-0324, who was previously associated with GandCrab and Sage ransomware distribution as well as the FIN7 hacking group, has been deploying Microsoft Teams phishing attacks since July, BleepingComputer reports.
Article Link: New Microsoft Teams phishing attacks launched by ransomware-linked IAB | SC Media