Microsoft Teams Guest Access Vulnerability Exposes Users to Security Risks

Microsoft Teams Guest Access Vulnerability Exposes Users to Security Risks

First seen 28 Nov 2025, 09:36 UTC Research.CheckpointThehackernewsTheregisterCybersecuritydiveEsecurityplanet+15 72% similarity 26.3

Article Content

Browse articles
ThreatCluster

A report from Ontinue reveals that Microsoft Teams' guest access feature allows users to accept invitations from external organizations, which results in the loss of their Defender for Office 365 protections. This vulnerability enables potential attacks as users interact with unprotected environments while logged in with their corporate accounts. Ontinue's threat researcher, Rhys Downing, highlights that this issue is linked to a feature enabling chats with any email address.

ThreatCluster AI

Community

Browse all →