Microsoft Teams: Teams Button Support on Multiple Connected Peripheral Devices

🚨 The Signal: Microsoft Teams now supports the Teams button across multiple connected peripheral devices without manual selection. This improves user experience but introduces a minor increase in the attack surface for hardware-based keylogging or malicious device impersonation.

The Impact

End-users are affected by improved usability, but security teams face a low-level risk from potential malicious peripheral device exploitation.

• End-users: Improved meeting experience with less friction.
• Security Teams: Minor increase in attack surface from potentially compromised peripherals.
• IT Admins: No direct administrative action required, but device policy review is prudent.
• Compliance Teams: Need to review existing peripheral device policies against ISM-0836.

The Action

1. Review existing peripheral device policies to ensure they cover multiple connected devices.
2. Educate users on the risks of connecting unapproved or untrusted peripheral devices.
3. Verify that only 'Certified for Microsoft Teams' devices are permitted for sensitive communications.
4. Consider implementing device control policies via Microsoft Intune to restrict unapproved USB devices.

Domain: Teams · Impact: low · Workload: Teams