← LibraryTechnique entry
M365-TEAMS-PHISHInitial Access
Teams External Tenant Message
External-tenant chat from a typosquat tenant — attacker phishes via Teams DM with file attachment, often whitelisted by users.
§ Where this technique fits
M365-TEAMS-PHISH is catalogued under the Initial Access tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.