Chicago Computer Network

⚙️ It's patch Tuesday again! Unpatched software is one of the top cyberattack vectors.
We automate patching across endpoints, servers, and apps—so you don’t have to worry.
🛠️ Prevent vulnerabilities before attackers exploit them.

💬 KongTuke is using external Microsoft Teams chats to trick employees into pasting a malicious PowerShell command that deploys ModeloRAT and can gain persistent access in under five minutes.

🛡️ The campaign uses five Microsoft 365 tenants and a ModeloRAT variant with expanded persistence, while recommended defenses include restricting external Teams federation with allowlists and hunting for the listed indicators of compromise.

KongTuke hackers now use Microsoft Teams for corporate breaches Initial access broker KongTuke has moved to Microsoft Teams for social engineering attacks, taking as little as five minutes to gain persistent access to corporate networks.