A previously undocumented threat activity cluster known as UNC6692 has been observed leveraging social engineering tactics via Microsoft Teams to deploy a custom malware suite on compromised hosts. The group impersonates IT help desk employees, convincing victims to accept Microsoft Teams chat invitations from fraudulent accounts to facilitate malware deployment.