Hackers are employing SEO poisoning and malvertising techniques to distribute the Oyster malware, which provides unauthorized remote access to infected Windows devices. Recent campaigns have highlighted the promotion of fake Microsoft Teams installers through misleading advertisements, leading users to a counterfeit website that mimics Microsoft’s official download page. The malicious installer, identified as “MSTeamsSetup.exe,” executes a backdoor DLL, ensuring persistence by creating a scheduled task. This situation underscores the ongoing exploitation of user trust in reputable software brands, posing significant risks to corporate networks, particularly targeting IT administrators who often possess privileged access. It is crucial for users to download software exclusively from verified sources to mitigate such security threats.