Microsoft Teams Flaws Allowed Message Spoofing And Executive Impersonation

by Justin Erickson

Check Point researchers disclosed four Microsoft Teams vulnerabilities that enabled attackers to impersonate colleagues and executives, alter messages without leaving an “Edited” label, and spoof caller and notification identities. The issues affected both internal users and external guests and risks include social engineering, financial fraud, or malware delivery inside organizations. According to Check Point, the flaws allowed manipulation of message content and display names, as well as forged identities in call notifications and during calls — which could allow attackers to appear to be a senior leader or trusted coworker. The vulnerabilities were reported to Microsoft in March 2024. Microsoft says it has now addressed them through multiple updates and patches, ending in October 2025. One of the issues, a notification spoofing problem in Teams for iOS, is tracked as CVE-2024-38197. To keep yourself safe from this, make sure to update your Teams, be wary of unusual and sensitive information requests from colleagues, and implement the principle of least privilege in your organization.