Microsoft Teams External Domains Anomalies Report rollout for suspicious external-domain traffic
Security Tool/Service
Summary
Hide ▲
Show ▼
Microsoft Teams is introducing External Domains Anomalies Report, a security feature that flags suspicious external-domain traffic so admins can spot potential data-sharing or security threats without disrupting legitimate communications. The report will analyze messaging trends for sharp spikes, new domains, and abnormal engagement patterns, giving defenders earlier visibility into risky interactions. Microsoft says the feature will begin rolling out worldwide in February 2026 for standard multi-tenant environments on the web platform.
Related Happenings
Microsoft Teams admin policy adds approval-based control for third-party bots
Security Tool/Service
H score11
First: 30.06.2026 13:52
Last: 30.06.2026 13:52
Sources 1
About this happening:
Microsoft Teams introduced an **admin policy** that lets organizers prevent **third-party bots** from joining meetings without approval. The control improves **visibility** over e...
Microsoft Teams admin policy adds approval-based control for third-party bots
Security Tool/ServiceAbout this happening: Microsoft Teams introduced an **admin policy** that lets organizers prevent **third-party bots** from joining meetings without approval. The control improves **visibility** over e...
Microsoft Teams third-party bot approval controls for meeting social-engineering risk
Defensive Guidance
H score11
First: 30.06.2026 13:52
Last: 30.06.2026 13:52
Sources 1
About this happening:
**Microsoft Teams** has added admin controls that block **third-party bots** without approval, reducing **meeting social-engineering risk** across managed tenants. The policy impr...
Microsoft Teams third-party bot approval controls for meeting social-engineering risk
Defensive GuidanceAbout this happening: **Microsoft Teams** has added admin controls that block **third-party bots** without approval, reducing **meeting social-engineering risk** across managed tenants. The policy impr...
KongTuke Microsoft Teams initial access campaign
Campaign
H score42
First: 14.05.2026 15:12
Last: 14.05.2026 15:12
Sources 1
About this happening:
The **KongTuke** campaign now uses **Microsoft Teams** social engineering to gain persistent access to **corporate networks**, shortening initial compromise to **under five minute...
KongTuke Microsoft Teams initial access campaign
CampaignAbout this happening: The **KongTuke** campaign now uses **Microsoft Teams** social engineering to gain persistent access to **corporate networks**, shortening initial compromise to **under five minute...
Code of conduct-themed Microsoft AiTM phishing campaign
Campaign
H score53
First: 05.05.2026 09:35
Last: 05.05.2026 09:35
Sources 1
About this happening:
A **large-scale phishing campaign** used code of conduct-themed lures and **legitimate email services** to push victims to attacker-controlled domains and steal **authentication t...
Code of conduct-themed Microsoft AiTM phishing campaign
CampaignAbout this happening: A **large-scale phishing campaign** used code of conduct-themed lures and **legitimate email services** to push victims to attacker-controlled domains and steal **authentication t...
Microsoft Outlook.com outage causing sign-in failures
Service Disruption
H score20
First: 27.04.2026 15:03
Last: 27.04.2026 15:03
Sources 1
About this happening:
Microsoft's **Outlook.com** is experiencing an **ongoing outage** that is blocking sign-ins and mailbox access, leaving some customers unable to use email normally. The disruption...
Microsoft Outlook.com outage causing sign-in failures
Service DisruptionAbout this happening: Microsoft's **Outlook.com** is experiencing an **ongoing outage** that is blocking sign-ins and mailbox access, leaving some customers unable to use email normally. The disruption...
Timeline
-
10.12.2025 21:32 2 articles · 7mo ago
Microsoft Teams plans External Domains Anomalies Report
Initial DisclosureMicrosoft is developing Microsoft Teams' External Domains Anomalies Report to analyze suspicious traffic with external domains, flagging sudden spikes, new domains, and abnormal engagement patterns so IT administrators can spot possible data-sharing or security threats without disrupting legitimate business communications. Microsoft says the feature will begin rolling out worldwide in February 2026 to standard multi-tenant environments on the web platform.
Show sources
- Microsoft Teams to warn of suspicious traffic with external domains — www.bleepingcomputer.com — 10.12.2025 21:32
- Microsoft Teams to warn of suspicious traffic with external domains — www.bleepingcomputer.com — 10.12.2025 21:32