Microsoft Teams adds user reporting for false-positive threat detections
Security Tool/Service
Summary
Hide ▲
Show ▼
Microsoft Teams is adding user reporting for messages wrongly flagged as malicious, giving organizations a way to surface false positives and improve detection accuracy. The feature is rolling out worldwide by the end of November 2025 and will be enabled by default at general availability. It applies to tenants using Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR across desktop, mobile, and web. The change matters because user feedback can help tune messaging security controls while reducing unnecessary disruption from incorrect threat alerts.
Related Happenings
Microsoft Teams admin policy adds approval-based control for third-party bots
Security Tool/Service
H score11
First: 30.06.2026 13:52
Last: 30.06.2026 13:52
Sources 1
About this happening:
Microsoft Teams introduced an **admin policy** that lets organizers prevent **third-party bots** from joining meetings without approval. The control improves **visibility** over e...
Microsoft Teams admin policy adds approval-based control for third-party bots
Security Tool/ServiceAbout this happening: Microsoft Teams introduced an **admin policy** that lets organizers prevent **third-party bots** from joining meetings without approval. The control improves **visibility** over e...
Microsoft Teams third-party bot approval controls for meeting social-engineering risk
Defensive Guidance
H score11
First: 30.06.2026 13:52
Last: 30.06.2026 13:52
Sources 1
About this happening:
**Microsoft Teams** has added admin controls that block **third-party bots** without approval, reducing **meeting social-engineering risk** across managed tenants. The policy impr...
Microsoft Teams third-party bot approval controls for meeting social-engineering risk
Defensive GuidanceAbout this happening: **Microsoft Teams** has added admin controls that block **third-party bots** without approval, reducing **meeting social-engineering risk** across managed tenants. The policy impr...
Microsoft Teams on macOS repeated location-prompt service disruption
Service Disruption
H score0
First: 19.05.2026 19:10
Last: 19.05.2026 19:10
Sources 1
About this happening:
Microsoft confirmed a **Microsoft Teams on macOS** service disruption that causes **non-dismissible location prompts** for some users, interrupting normal app use for those who en...
Microsoft Teams on macOS repeated location-prompt service disruption
Service DisruptionAbout this happening: Microsoft confirmed a **Microsoft Teams on macOS** service disruption that causes **non-dismissible location prompts** for some users, interrupting normal app use for those who en...
KongTuke Microsoft Teams initial access campaign
Campaign
H score42
First: 14.05.2026 15:12
Last: 14.05.2026 15:12
Sources 1
About this happening:
The **KongTuke** campaign now uses **Microsoft Teams** social engineering to gain persistent access to **corporate networks**, shortening initial compromise to **under five minute...
KongTuke Microsoft Teams initial access campaign
CampaignAbout this happening: The **KongTuke** campaign now uses **Microsoft Teams** social engineering to gain persistent access to **corporate networks**, shortening initial compromise to **under five minute...
Code of conduct-themed Microsoft AiTM phishing campaign
Campaign
H score53
First: 05.05.2026 09:35
Last: 05.05.2026 09:35
Sources 1
About this happening:
A **large-scale phishing campaign** used code of conduct-themed lures and **legitimate email services** to push victims to attacker-controlled domains and steal **authentication t...
Code of conduct-themed Microsoft AiTM phishing campaign
CampaignAbout this happening: A **large-scale phishing campaign** used code of conduct-themed lures and **legitimate email services** to push victims to attacker-controlled domains and steal **authentication t...
Timeline
-
18.11.2025 19:14 2 articles · 7mo ago
Microsoft Teams adds user reporting for false-positive threat detections
Initial DisclosureMicrosoft Teams is adding user reporting for messages incorrectly flagged as security threats in chats and channels, with the feature first announced in September 2025 and expected to reach general availability worldwide by the end of November 2025. The control will be enabled by default at general availability, can be managed in the Teams admin center and Microsoft Defender portal, and applies to organizations using Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR across desktop, mobile, and web.
Show sources
- Microsoft Teams to let users report messages wrongly flagged as threats — www.bleepingcomputer.com — 18.11.2025 19:14
- Microsoft Teams to let users report messages wrongly flagged as threats — www.bleepingcomputer.com — 18.11.2025 19:14