Microsoft Teams to add brand impersonation warnings to calls

Recorded: Jan. 22, 2026, 6:03 p.m.

Original

News

Featured
Latest

Zendesk ticket systems hijacked in massive global spam wave

Hackers breach Fortinet FortiGate devices, steal firewall configs

Fake Lastpass emails pose as password vault backup alerts

Hackers exploit 29 zero-days on second day of Pwn2Own Automotive

Microsoft Teams to add brand impersonation warnings to calls

INC ransomware opsec fail allowed data recovery for 12 US orgs

Why Active Directory password resets are surging in hybrid work

Microsoft updates Notepad and Paint with more AI features

Tutorials

Latest
Popular

How to access the Dark Web using the Tor Browser

How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11

How to use the Windows Registry Editor

How to backup and restore the Windows Registry

How to start Windows in Safe Mode

How to remove a Trojan, Virus, Worm, or other Malware

How to show hidden files in Windows 7

How to see hidden files in Windows

Webinars
Downloads

Latest
Most Downloaded

Qualys BrowserCheck

STOPDecrypter

AuroraDecrypter

FilesLockerDecrypter

AdwCleaner

ComboFix

RKill

Junkware Removal Tool

Deals

Categories

eLearning

IT Certification Courses

Gear + Gadgets

Security

VPNs

Popular

Best VPNs

How to change IP address

Access the dark web safely

Best VPN for YouTube

Forums
More

Virus Removal Guides
Startup Database
Uninstall Database
Glossary
Send us a Tip!
Welcome Guide

HomeNewsMicrosoftMicrosoft Teams to add brand impersonation warnings to calls

Microsoft Teams to add brand impersonation warnings to calls

By Sergiu Gatlan

January 22, 2026
11:28 AM
0

Microsoft will soon add new fraud protection features to Teams calls, warning users about external callers who attempt to impersonate trusted organizations in social engineering attacks.
Named "Brand Impersonation Protection," the new Teams security feature will start rolling out to the targeted release ring in mid-February and will be enabled by default.
According to Microsoft, the feature checks incoming VoIP calls from first-time external contacts for signs of brand impersonation and displays high-risk call warnings before suspicious calls are answered.

While users can accept, block, or end flagged calls, these alerts may persist during conversations if suspicious signals persist. These warnings aim to prevent social engineering attacks where scammers pose as legitimate businesses or government agencies to steal sensitive information or money from targets.
"Brand Impersonation Protection for Teams Calling adds proactive safeguards against fraudulent or deceptive external callers who attempt to appear as trusted organizations," Microsoft said in a Microsoft 365 message center update.
"This helps reduce social-engineering risks and improves tenant security when users receive first-contact external calls. This update aligns with Microsoft's ongoing investments in caller identity protection and secure collaboration."
Although the Brand Impersonation Protection feature activates automatically, without requiring admin actions, Microsoft advises customers to prepare their support staff for questions about the new warnings.
IT departments should also update internal training materials and inform helpdesk teams that users may begin seeing high-risk call alerts starting next month.
As Microsoft previously announced, Teams will automatically strengthen messaging security by default in January against malicious content by enabling malicious URL detection, weaponizable file type protection, and a system for reporting false positives.
Microsoft is also preparing to roll out a new feature that warns admins about suspicious traffic from external domains.
As Microsoft revealed during its 2024 Enterprise Connect conference, more than 320 million people use Teams each month.

Secrets Security Cheat Sheet: From Sprawl to Control
Whether you're cleaning up old keys or setting guardrails for AI-generated code, this guide helps your team build securely from the start.
Get the cheat sheet and take the guesswork out of secrets management.
Download Now

Related Articles:
Microsoft Teams to let admins block external users via Defender portalMicrosoft Teams strengthens messaging security by default in JanuaryMicrosoft is speeding up the Teams desktop client for WindowsMicrosoft updates Notepad and Paint with more AI featuresMicrosoft shares workaround for Outlook freezes after Windows update

Brand
Microsoft
Microsoft Teams
Social Engineering

Sergiu Gatlan
Sergiu is a news reporter who has covered the latest cybersecurity and technology developments for over a decade. Email or Twitter DMs for tips.

Popular Stories

Fortinet admins report patched FortiGate firewalls getting hacked

Ingram Micro says ransomware attack affected 42,000 people

Tesla hacked, 37 zero-days demoed at Pwn2Own Automotive 2026

Sponsor Posts

Discover how phishing kits are sold and deployed. Download the full research report.

Overdue a password health-check? Audit your Active Directory for free

Identity Governance & Threat Detection in one: Get a guided tour of our platform

Upcoming Webinar

Main Sections

News
Webinars
VPN Buyer Guides
SysAdmin Software Guides
Downloads
Virus Removal Guides
Tutorials
Startup Database
Uninstall Database
Glossary

Community

Forums
Forum Rules
Chat

Useful Resources

Welcome Guide
Sitemap

Company

About BleepingComputer
Contact Us
Send us a Tip!
Advertising
Write for BleepingComputer
Social & Feeds
Changelog

Username

Password

Remember Me

Not a member yet? Register Now

Reporter

Help us understand the problem. What is going on with this comment?

Spam

Abusive or Harmful

Inappropriate content

Strong language

Other

Read our posting guidelinese to learn what content is prohibited.

Submitting...
SUBMIT

Microsoft is implementing “Brand Impersonation Protection” within Microsoft Teams to mitigate the rising threat of social engineering attacks. This proactive security feature, scheduled for initial rollout in the targeted release ring during mid-February 2026, will automatically assess incoming Voice over IP (VoIP) calls from first-time external contacts. The primary goal of this system is to identify and flag calls that exhibit characteristics indicative of brand impersonation attempts, a prevalent tactic employed by malicious actors seeking to defraud individuals or organizations.

Upon detecting potentially suspicious signals, the Teams system will immediately display high-risk call warnings before the user answers the call. While users retain the option to accept, block, or terminate these flagged calls, Microsoft acknowledges that the alerts may persist during ongoing conversations if the suspicious indicators continue to be present. This layered approach aims to disrupt the attacker’s attempt to establish a deceptive connection and protect the user from potential harm.

According to a Microsoft 365 message center update, the development of Brand Impersonation Protection aligns with Microsoft’s broader commitment to bolstering tenant security and reducing the risks associated with external communications, primarily during initial contact with unfamiliar external parties. The system’s automatic activation eliminates the need for administrative intervention, streamlining the process and optimizing its immediate impact.

Recognizing the potential for user confusion and support inquiries, Microsoft advises IT departments to proactively prepare their support staff. Specifically, updated internal training materials should be developed to address anticipated questions regarding the new alerts. Helpdesk teams will need to be informed that users may begin encountering high-risk call warnings starting in February 2026.

This initiative complements previously announced security enhancements within Teams, including the default strengthening of messaging security against malicious content via features such as malicious URL detection, weaponizable file type protection, and a reporting mechanism for false positives. Furthermore, Microsoft is preparing another feature that will alert administrators about suspicious traffic originating from external domains. This expanded security posture reflects a concerted effort to safeguard user communications and minimize vulnerabilities within the Teams ecosystem.

As of late 2024, over 320 million individuals utilize Microsoft Teams monthly, highlighting the scale of the company’s commitment to security and the growing importance of robust protection against evolving cyber threats. The implementation of Brand Impersonation Protection represents a strategic response to the increasing sophistication of social engineering attacks and demonstrates Microsoft’s ongoing dedication to providing secure collaboration tools.