# General Availability of Collaboration Security for Microsoft Teams

By /

Listen to this Post

Microsoft has announced the General Availability (GA) of collaboration security for Microsoft Teams, enhancing Defender for Office 365 to protect against phishing, malware, and advanced attacks targeting Teams users. This update introduces robust security workflows and protection capabilities to counter sophisticated threats.

Key Features:

✅ Improved Teams Security Posture – Greater control over external organization communications.
✅ In-Line Protection – Blocks malicious links and attachments in real-time.
✅ Easy Suspicious Message Reporting – Users can report threats directly to admins and Microsoft.
✅ Threat Hunting & Response – Advanced security insights across Teams messages.

🔗 Blog: https://lnkd.in/dt4kNKF8

You Should Know:

1. Advanced Hunting Tables for Teams Security

Security teams can now leverage three new Advanced Hunting tables in Microsoft Defender:
– MessageEvents – Tracks message activities.
– MessageURLs – Monitors URLs shared in Teams.
– PostDeliveryMessageEvents – Analyzes post-delivery message events.

Example KQL Query for Threat Detection:

[kql]
MessageEvents
| where SenderFromDomain == “malicious.com”
| project Timestamp, Sender, Recipient, Subject
[/kql]

### **2. PowerShell Commands for Teams Security Configuration**

Admins can enforce security policies via PowerShell:


<h1>Enable Safe Links for Teams</h1>

Set-SafeLinksPolicy -Identity "TeamsPolicy" -EnableSafeLinksForTeams $true

<h1>Block malicious file types</h1>

Set-MalwareFilterPolicy -Identity "TeamsMalwarePolicy" -FileTypeAction Block

### **3. Linux Command for Security Log Analysis**

For hybrid environments, analyze Teams logs using grep and jq: 

grep "suspicious_message" /var/log/teams/security.log | jq '.sender, .url'

### **4. Windows Defender Scan for Teams Cache**

Check for malicious files in Teams cache:

Start-MpScan -ScanPath "$env:APPDATA\Microsoft\Teams" -ScanType FullScan

## **What Undercode Say:**

Microsoft’s enhanced Teams security is a crucial step against phishing and malware in collaborative environments. Security teams should:
– Regularly audit Teams messages using Advanced Hunting.
– Enforce Safe Links and Attachment Scanning.
– Monitor external communications with strict policies.
– Automate threat response using PowerShell and Defender APIs.

**Expected Output:**

  • Reduced phishing incidents in Teams.
  • Faster threat detection via KQL queries.
  • Secure collaboration with real-time URL scanning.

🔗 Reference: Microsoft Defender for Office 365

References:

Reported By: Markolauren Ga – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 TelegramFeatured Image

Related Posts: