Skip to main content

Microsoft Teams now protects you from phishing attacks

Microsoft Teams Android Install Store
Microsoft Teams Android Install Store (Image credit: Daniel Rubino / Windows Central)

What you need to know

  • Microsoft Teams now protects against phishing attacks with Safe Links in Microsoft Defender for Office 365.
  • The feature scans links at the time someone clicks them because attackers can redirect clicks after they've been sent.
  • Microsoft's systems block over 100 million phishing emails per month.

Microsoft Teams now works with Safe Links in Microsoft Defender for Office 365. The feature protects against phishing attacks by scanning links when they're clicked within Teams. Phishing attacks are common in emails but have made their way to apps like Microsoft Teams as more people move to remote work and learning. Microsoft explains the new feature in a Tech Community post (opens in new tab).

Safe Links support is now generally available in Microsoft Teams. It works within group chats and channels. The protection is available in Teams for organizations with Microsoft Defender for Office 365, which already works with OneDrive, SharePoint, and Microsoft's Office apps.

The Safe Links feature in Defender for Office 365 has been around since 2015. Every month Microsoft's detonation system detects "close to 2 million distinct URL-based payloads." Microsoft's system also blocks over 100 million phishing emails with malicious URLs each month. Now, that same protection is available in Microsoft Teams.

Microsoft's system scans links at the time of click because attackers attempt to find ways around normal forms of protection.

"As detection technologies evolve to block malicious sites quicker, sending malicious links to users becomes less effective. So attackers evolve their attacks," explains Microsoft. "Instead of sending malicious links to users, attackers now send benign links. Once the link has been delivered, the attacker redirects the link to a malicious site."

Attackers can redirect links to dangerous websites. Microsoft explains that someone could send a link that redirects to Microsoft.com when it's sent but then later change the link to redirect to a malicious site. Because of this, scanning the link when it's clicked, not just when it's sent, is important.

Sean Endicott
Sean Endicott

Sean Endicott is the news writer for Windows Central. If it runs Windows, is made by Microsoft, or has anything to do with either, he's on it. Sean's been with Windows Central since 2017 and is also our resident app expert. If you have a news tip or an app to review, hit him up at sean.endicott@futurenet.com.

1 Comment
  • I have to say I am not a fan of "Safe Links". AKA 'redirect and track through Microsoft Links. To me this is a partial corruption of the internet.
    I am a fan of checking links via a security service before opening them, but replacing links just means Microsoft is tracking where people go in the name of 'security'. It also means people have no idea what the real URL was. Not to mention if Microsoft ever has to change their system, they've basically make a world of broken links. And yes, they ALWAYS end up retiring a service.
    Outlook Email has been replacing links in email for ages like this. Thankfully Premium members can turn if off.
    Microsoft: Check links, don't modify people's emails and content to redirect through your servers.