Back to Feed
ToolsJul 1, 2026

Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings

Microsoft Teams now requires organizer approval for external AI bots in meetings.

Summary

Microsoft has introduced a new Teams admin policy to enhance control over external AI bots joining meetings. This feature requires explicit organizer approval before bots can participate, aiming to mitigate security and privacy risks associated with sensitive information sharing. The update also improves Teams' ability to distinguish between humans and bots using behavioral and infrastructure signals.

Full text

Microsoft on Tuesday announced a new Teams admin policy aimed at providing organizations with increased visibility and control over external bots joining their meetings. With AI meeting tools becoming increasingly common, the lack of proper controls creates security and privacy risks, especially when sensitive information is being shared, and the new protections are intended to eliminate that. To ensure that only intended participants join their meetings, organizations can now assign a new ‘Manage external bots and their access to meetings’ policy to individual users or specific groups from the Teams Admin Center. By default, Teams now detects bots and asks for explicit organizer confirmation before admitting them to a meeting. Admins also have the option to disable this feature, and Teams will not perform bot detection. “When enabled, Teams automatically detects potential bots, places them in the meeting lobby, clearly identifies them, and prompts organizers to confirm admission. Even in meetings where organizers allow participants to bypass the lobby, bots identified through this policy will continue to require approval before joining,” Microsoft explains. The tech giant says it also improved Teams’ ability to distinguish between bots and humans, using behavioral and infrastructure signals.Advertisement. Scroll to continue reading. Additionally, Microsoft is providing independent software vendors (ISVs) with the means to register their bots and include a self-identification marker in join requests, so that Teams can identify them as known participants. Detected bots are visually distinguished from other participants so that organizers can clearly see them in the meeting lobby. Participants in the lobby are now grouped into ‘Waiting’ (verified individuals and registered bots) and ‘Suspected threats’ (unregistered bots). To prevent the accidental admission of bots into meetings, Teams does not offer a one-click Admit option for identified bots, requests confirmation when admitting bots, and warns when an organizer selects ‘Admit all’ and bots are included. In light of the new comprehensive approach to managing external bots in meetings, Microsoft is retiring the existing CAPTCHA verification. Related: Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack Related: AI Speeds Attacks, But Identity Remains Cybersecurity’s Weakest Link Related: OpenAI Rolls Out Advanced Security for ChatGPT Accounts Related: Google Rolls Out Cookie Theft Protections in Chrome Written By Ionut Arghire Ionut Arghire is an international correspondent for SecurityWeek. Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights. More from Ionut Arghire Aflac Japan Data Breach Impacts 4.38 MillionExploitation of Recent Oracle E-Business Suite Vulnerability BeginsCritical SimpleHelp Vulnerability Exploited for Malware DeliveryQuantifind Raises $200 Million for AI-Native Risk IntelligenceResearchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer MachinesStraiker Raises $64 Million for AI Security Platform‘DirtyClone’ Linux Kernel Vulnerability Leads to Root AccessUS Offers $10 Million Bounty for Russian State Hackers as Messaging App Attacks Evolve Latest News Adobe Patches Critical ColdFusion, Campaign Classic VulnerabilitiesCitrix Patches NetScaler Vulnerabilities, Including New ‘HTTP/2 Bomb’ AttackFrontier AI: Six Questions Every Enterprise Should Ask Security VendorsApple Patches Dozens of Vulnerabilities Across iOS, macOS, and SafariDawnguard Raises $6.3 Million for Security Architecture Automation PlatformMassive Password Spray Campaign Targeting Azure CLIGoogle Patches 382 Chrome VulnerabilitiesBlueHammer Vulnerability Exploited in Ransomware Attacks Trending Daily Briefing NewsletterSubscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Why Email Security Keeps Failing (And What Has to Change) July 8, 2026 Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more. Register Virtual Event: 2026 Cloud Security Summit July 16, 2026 This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments. Register People on the MoveTracey Mustacchio has joined Everfox as Chief Marketing Officer.Mark Carter has been appointed Chief Information Security Officer at Socure.Spektrum Labs has named Mark Cravotta Chief Operating Officer.More People On The MoveExpert Insights Frontier AI: Six Questions Every Enterprise Should Ask Security Vendors From model selection and automation to validation and measurable results, the right questions can help enterprises separate genuine AI capabilities from marketing hype. (Joshua Goldfarb) The AI Token Costs That Can Break Cybersecurity As cybersecurity platforms embrace agentic AI, organizations must balance detection performance against the escalating costs of token consumption, deployment architecture, and AI credits. (Danelle Au) When Information Becomes the Attack Surface – Understanding AI Agent Traps From hidden content injections to cognitive state poisoning, attackers are turning trusted data sources into traps for autonomous AI. (Etay Maor) What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks Groups like ShinyHunters are demonstrating that attackers do not necessarily need malware or zero-day exploits to cause massive damage. (Torsten George) No Exploits Required Four decades of incident response experience suggest that exploits are often the symptom, not the root cause, of today’s cybersecurity failures. (Tod Beardsley) Flipboard Reddit Whatsapp Whatsapp Email

Entities

Teams (product)Microsoft (vendor)AI (technology)