Microsoft Teams: Co-organizer updates in Webinars

🚨 The Signal: Microsoft Teams webinar co-organizers now have full control to edit, publish, and cancel events. This elevates their permissions, increasing the risk of unauthorised event modifications or cancellations.

The Impact

Webinar co-organizers now have elevated permissions, increasing the risk of accidental or malicious event changes.

• Co-organizers: Can now make critical changes to webinars, increasing their responsibility.
• Organizers: Must carefully select co-organizers due to their expanded control.
• Security Teams: Need to ensure appropriate policies are in place for co-organizer assignments.
• Attendees: May experience unexpected event changes or cancellations if co-organizer accounts are compromised.

The Action

1. Review existing Teams meeting policies for webinar capabilities.
2. Educate webinar organizers on the expanded co-organizer permissions.
3. Implement a clear internal policy for assigning co-organizer roles.
4. Monitor Teams audit logs for webinar modification and cancellation events by co-organizers.

Domain: Teams · Impact: medium · Workload: Teams · Essential Eight: Restrict Administrative Privileges · ISM: ISM-0445, ISM-1175, ISM-1380, ISM-1507, ISM-1508, ISM-1509, ISM-1647, ISM-1648, ISM-1650, ISM-1686, ISM-1688, ISM-1689, ISM-1883, ISM-1897, ISM-1898