Cybersecurity researchers have shed light on a cross-tenant blind spot that allows attackers to bypass Microsoft Defender for Office 365 protections via the guest access feature in Teams.
« When users operate as guests in another tenant, their protections are determined entirely by that hosting environment, not by their home organization, » Ontinue security researcher Rhys Downing said in a report
