Attackers can use genuine binaries from Microsoft Teams to execute a malicious payload using a mock installation folder for the collaboration software. The problem affects most Windows desktop apps that use the Squirrel installation and update framework, which uses NuGet packages. WhatsApp, Grammarly, GitHub, Slack, Slack and Discord are among those affected. Microsoft Teams is becoming a popular choice as an alternative to Slack, which has 13 million daily active users and more than 19 million on a weekly basis, which is more than what Slack can boast.
Source: https://www.bleepingcomputer.com/news/security/microsoft-teams-can-be-used-to-execute-arbitrary-payloads/