Connect with us

Technology

Microsoft Teams might have a few serious security issues

Published

3 years ago

on

Microsoft Teams might have a few serious security issues

Security researchers have discovered four separate vulnerabilities in Microsoft Teams. Attackers can use these vulnerabilities to spoof link previews, leak IP addresses, and even access the software giant’s internal services.

According to a new blog post, these findings were “stumbled upon” by Positive Security researchers while looking for a way to bypass the Same Origin Policy (SOP) in Teams and Electron. For those who are unfamiliar, SOP is a security mechanism in the browser that can help prevent websites from attacking each other.

During the investigation of this matter, the researchers found that they could bypass the SOP in Teams by abusing the link preview feature in the Microsoft video conferencing software, allowing the client to generate link previews for the target page, and then use summary text or optical preview images On the character recognition (OCR) to extract information.

Advertisement

However, while performing this operation, Positive Security co-founder Fabian Bräunlein discovered other unrelated vulnerabilities in the implementation of this feature. Microsoft Teams vulnerability
Of the four vulnerabilities discovered by Bräunlein in Teams, two can be used on any device and allow server-side request forgery (SSRF) and spoofing, while the other two only affect Android smartphones and can be exploited to leak IP addresses and achieve Denial of service (DOS).

By exploiting SSRF vulnerabilities, researchers were able to leak information from Microsoft’s local network. At the same time, spoofing vulnerabilities can be used to increase the effectiveness of phishing attacks or hide malicious links.

The DOS error is particularly worrying because an attacker can send a message to the user that contains a link preview with an invalid preview link target (for example, “boom” instead of “https://…”), thereby causing the Teams application The program crashes Android. Unfortunately, when trying to open a chat or channel with malicious messages, the app will continue to crash.

Positive Security disclosed its findings to Microsoft responsibly through its bug bounty program on March 10. However, since then, the software giant has only patched the IP address leak vulnerability in the Android version of Teams. Now Positive Security has publicly disclosed its findings. Although Microsoft told researchers that they would not pose a direct threat to its users, it may have to patch the remaining three vulnerabilities.

Advertisement

Complete News Source : techradar.pro

Related Topics:
Continue Reading

Music

While a Punjabi vocalist croons, PM Modi replicates Diljit Dosanjh’s beats and beats the table like a dholak. Observe

Published

3 weeks ago

on

January 2, 2025

By

While a Punjabi vocalist croons, PM Modi replicates Diljit Dosanjh’s beats and beats the table like a dholak. Observe

Prime Minister Narendra Modi recently met acclaimed singer- actor Diljit Dosanjh, describing their interaction as “very memorable.” 
Prime Minister Narendra Modi met singer-actor Diljit Dosanjh and lauded him as “a combination of talent and tradition.” During the “memorable’ meeting”, the two discussed music, culture, and India’s vibrancy, including yoga.

Diljit, PM Modi match beats

During the meeting, PM Modi praised Diljit for his achievements, saying, “When a boy from a small village in Hindustan shines on the global stage, it feels amazing. Your family named you Diljit, and you keep on winning people’s hearts, just as your name suggests.”

Advertisement

Diljit responded, “We used to read that ‘Mera Bharat Mahan’ (My India is great), but when I travelled across India, I realised why people say this.” PM Modi highlighted India’s diversity, saying, “India’s vastness is its strength. We are a vibrant society.”

Diljit added, “The greatest magic in India is yoga.” PM Modi agreed, saying, “Those who have experienced yoga know its power.”

The singer-actor also admired PM Modi’s personal journey, saying, “I had watched your interview, sir. The position of Prime Minister is great, but behind it, there is a mother, a son, and a human being. Many times, this half-truth is much larger when you carry your mother and the sacred Ganga with you. That touches the heart.”

Diljit then sang a song on Guru Nanak, as PM Modi listened intently, beating the adjacent table like a dholak, matching his beats with Diljit’s.

Advertisement

Diljit, PM Modi express grattitude

After the meeting, Diljit Dosanjh expressed his gratitude, calling it a “fantastic” way to start the year. He posted on X, “A fantastic start to 2025. A very memorable meeting with PM @narendramodi Ji. We talked about many things, including music, of course!”

PM Modi responded to Dosanjh’s post, describing their meeting as “a great interaction.” He said, “A great interaction with Diljit Dosanjh! He’s truly multifaceted, blending talent and tradition. We connected over music, culture, and more.”

Diljit recently concluded his Dil-Luminati tour in India with a grand performance in Ludhiana. Throughout his concerts at various venues, the singer aimed to address important social issues during his performances.

In a lighthearted and endearing moment, Prime Minister Narendra Modi was seen enjoying the beats of a Punjabi vocalist, tapping the table in rhythm like a dholak player during a recent cultural event. The video, which has since gone viral, showcases PM Modi replicating the infectious energy of Diljit Dosanjh’s iconic beats, capturing the essence of Punjabi music’s vibrancy and rhythm.

Advertisement

The event brought together various cultural performers, with one Punjabi vocalist stealing the spotlight. As the singer crooned traditional Punjabi tunes, PM Modi, seated among other dignitaries, began enthusiastically tapping the table in sync with the music. His gestures resembled a seasoned dholak player, displaying his spontaneous connection with the pulsating beats.

The audience present erupted in applause, cheering on the Prime Minister’s engaging participation. Social media users were equally charmed, with many praising Modi’s ability to connect with the cultural diversity of India. “Modi Ji has the rhythm of a true Punjabi!” one user commented, while another said, “This is the energy we love to see in our leader.”

The moment also highlighted PM Modi’s commitment to celebrating India’s rich cultural heritage. His natural enjoyment of the performance reflects his appreciation for the art and music that unify the diverse communities of India.

Such lighthearted and relatable gestures from leaders often resonate deeply with the public, making them feel connected on a personal level.

Advertisement

#PMModi #DiljitDosanjhBeats #PunjabiMusicVibes #CulturalCelebration #DholakBeats #IndiaUnity #MusicConnects #ViralMoment #PMModiInAction #PunjabiHeritage

Group Media Publications
Entertainment News Platforms – anyflix.in      
Construction Infrastructure and Mining News Platform – https://cimreviews.com/
General News Platform – https://ihtlive.com/

Advertisement
Continue Reading
Anyskill-ads

Facebook

Trending