Skip to content

Commit

Permalink
baseline updates for 2.2 and 3.1 (#1219)
Browse files Browse the repository at this point in the history
  • Loading branch information
@nanda-katikaneni
nanda-katikaneni authored Jul 18, 2024
1 parent 849d20a commit 7881690
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions PowerShell/ScubaGear/baselines/teams.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -268,6 +268,7 @@ Unmanaged users SHALL NOT be enabled to initiate contact with internal users.
<!--Policy: MS.TEAMS.2.2v1; Criticality: SHALL -->
- _Rationale:_ Allowing contact from unmanaged users can expose users to email and contact address harvesting. This policy provides protection against this type of harvesting.
- _Last modified:_ July 2023
- _Note:_ This policy is not applicable to Government Community Cloud (GCC), GCC High, and Department of Defense (DoD) tenants.
- _MITRE ATT&CK TTP Mapping:_
- [T1204: User Execution](https://attack.mitre.org/techniques/T1204/)
- [T1204.001: Malicious Link](https://attack.mitre.org/techniques/T1204/001/)
Expand Down Expand Up @@ -369,6 +370,7 @@ Contact with Skype users SHALL be blocked.
<!--Policy: MS.TEAMS.3.1v1; Criticality: SHALL -->
- _Rationale:_ Microsoft is officially retiring all forms of Skype as listed above. Allowing contact with Skype users puts agency users at additional security risk. By blocking contact with Skype users an agency limits access to security threats utilizing the vulnerabilities of the Skype product.
- _Last modified:_ July 2023
- _Note:_ This policy is not applicable to Government Community Cloud (GCC), GCC High, and Department of Defense (DoD) tenants.
- _MITRE ATT&CK TTP Mapping:_
- [T1567: Exfiltration Over Web Service](https://attack.mitre.org/techniques/T1567/)

Expand Down

0 comments on commit 7881690

Please sign in to comment.