Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

help desk impersonation

UNC6692 Uses Microsoft Teams Help Desk Impersonation to Push Custom Malware

Cloud, Cybercrime, News, Research, Risk

April 24, 2026

UNC6692 used Microsoft Teams help desk impersonation, email bombing and a custom malware chain to target corporate users, according to Mandiant. The activity included credential harvesting, remote access, tunneling and later-stage network movement.

About
Editorial Policy
Privacy
Contact