FCM Messages Test Notification!!!! - Microsoft Teams, Google Hangouts push alert

📅 23 Sep 2020 13:10 GMT | 👤 @c2cDev

Topics: Microsoft, Google, Microsoft Teams

Microsoft Teams FCM Message Screenshot

Lates Update:

⚡️ Official word from Microsoft on twitter:

https://twitter.com/MSFT365Status/status/1298898693840609280

We're investigating an issue where users are receiving Test notifications on their mobile devices. Further updates will be provided under the SI TM221041 in your admin center.

Now we have ROUND 2 of such messages, most of us would be getting messages like - "Testing Notifcation from Microsoft to investigate this problem". If yiy watch closely the spelling of Notifation is incorrect. "Notifcation" which definitely makes it more suspicious! This is mostly probably linked to some Firebase exploit.

Many people using Microsoft Teams and Google Hangouts have reported that they have received multiple strange alters in form of push notification on their Android/iOS mobile devices.

The message says

FCM Messages
Test Notification!!!!

FCM Messagess
Test Notificationsss!!!!

FCM Messages
Testing Notifcation from Microsoft to investigate this problem

Clicking on the notification open up the respective App. That's it.

Sequence of events described by users -

Sudden FCM messages popup on mobile phone.
Multiple push notifications. 2 reported in many cases.
Clicking the notification card opens the App.
App opens normally and does not redirect anywhere, just opens the respective Teams/Hangouts App.
Message can be ignored and cleared.

There was a recent vulnerability reported for Firebase Cloud Messaging (FCM), allowing to exploit FCM keys stored in APK files in order to broadcast messages to anyone using a Firebase based application. FCM is used by many Apps to deliver push notifications.

These messages seems related and linked to the reported FCM vulnerability.

Though the alert messages seem harmless and can be ignored for now until we get clarification from big giants like Google and Microsoft. Who knows there would be more App being impacted.

More Update:1:55 pm, Thursday, 27 August 2020, Greenwich Mean Time (GMT)

⚠️ Some people are now reporting that they are receiving messages "FCM test notificationsss" which seems more suspicious!

There is a Google Hangout support thread that's going on since past two days on the same question: https://support.google.com/hangouts/thread/66799899?hl=en

Microsoft teams reddit page: https://www.reddit.com/r/MicrosoftTeams/comments/ihghrq/test_notification_fcm/

Microsot Teams Google Hangout - FCM Messages Test Notification.png

Microsot Teams and Google Hangout - FCM Messages Test Notification

Some users may receive unexpected Test notifications on their Android devices

Microsoft has published this information in Microsoft 365 admin center --> Service Health.

The Status shows "Service restored", so we can assume there will be no further such messages.

The message reads

Some users may receive unexpected Test notifications on their Android devices

TM221041, Microsoft Teams, Last updated: August 28, 2020 12:58 AM

Start time: August 27, 2020 1:30 PM, End time: August 27, 2020 11:55 PM

Status: Service restored

User impact: Users were receiving unexpected notifications via Teams on their Android mobile devices.

Latest message: Title: Some users may receive unexpected Test notifications on their Android devices

User Impact: Users were receiving unexpected notifications via Teams on their Android mobile devices.

More info: Users may have received notifications that stated: "FCM Messages : Test Notifications" or other similar variations of this message.

Our investigation shows no indication that these messages were malicious in nature; however, we recommend dismissing any of these notifications that were received during the event without interacting with them.

Final status: We've isolated the source of the issue and applied a mitigation. We've confirmed that no further unexpected notifications are being sent to users' Android devices.

Scope of impact: This issue may have potentially impacted any user with Microsoft Teams installed on an Android device.

Start time: Thursday, August 27, 2020, 1:30 PM (8:00 AM UTC)

End time: Thursday, August 27, 2020, 11:55 PM (6:25 PM UTC)

Root cause: A configuration issue within Microsoft Teams systems that facilitate notification delivery was identified and corrected.

Next steps: - We're analyzing the configuration of the systems that manage Microsoft Teams notifications to better understand the underlying source of this issue.

This is the final update for the event.

Hasgtags: #Microsoft #Google #Teams #Hangout #MicrosoftTeams #FCMMessages #TestNotification #fcmmessages

Comments:

was the root cause ever identified?
anon 19 Sep 2020 12:06:32 GMT
Just curious if anyone still receiving these ? LOL :P
anon 12 Sep 2020 04:23:18 GMT
Bizzare! got 6 notifications at night. What is Microsoft doing ? Office 365 outage ?
anon 28 Aug 2020 00:04:02 GMT
This is getting blizzare now! Microsoft should speak something about out now before its gets off hands!
anon 27 Aug 2020 15:11:22 GMT
From California, USA, My friends called me asking was I doing a prank on them lol! This looks like a vulnerability in FCM. Hope it is resolved soon and RCA is provided.
anon 27 Aug 2020 14:08:14 GMT
Same. Sweden. Phone Samsung Galaxy.
anon 27 Aug 2020 14:07:57 GMT
Same in Germany : Received 6 messages about 02:15 minutes ago
anon 27 Aug 2020 14:03:15 GMT
+1 India, got 5 of them.....
anon 27 Aug 2020 14:01:18 GMT
Aghhhhhh! Wonderful!
anon 27 Aug 2020 13:58:25 GMT
My god, its all over the internet and I find it funny! I thought its one of my developers testing out push notifications in Teams via Power automate, but it turned out to be a GHOST :P Nobody knows who the hell is sending these crpa messages. Mine had 4 !!!!
anon 27 Aug 2020 14:51:19 GMT
Saw 4 popups from Hangouts. Scanned the web and learned the source is not known and then safely ignored it. best to ignore.
anon 27 Aug 2020 14:50:28 GMT
4 exclamation and 4 S strange
anon 27 Aug 2020 14:47:18 GMT
From Canada, the FCM notifications are on a world tour it seems ;-), no one is spared
anon 27 Aug 2020 14:43:22 GMT
I don't want to risk my phone, have uninstalled MS Teams mobile app. I am fine with the desktop app on my laptop. suggest everyone to uninstall Teams and stay safe.
anon 27 Aug 2020 14:42:14 GMT

Hangouts FCM Messages Test Notification!!!! or Test Notificationsss!!! suspicious message.PNG

This is happening to me as well, received 8 of them in the last 30 minutes, 4 of them saying "Test Notification!!!!", later 4 "Test Notificationsss!!!!" weird!!
anon 27 Aug 2020 13:01:11 GMT
Woo! This seems so mysterious! Any MEMEs out for them yet? I am getting this quite frequent now!!!!!
anon 27 Aug 2020 13:08:05 GMT
Woke up with these notifications on my device. Having colleagues messaging me asking about it! This is helpful. Thanks - from Chicago
anon Aug 2020 10:11:23 GMT
Microsoft Teams advisory TM221041:
Some users may receive unexpected Test notifications on their mobile devices

User impact: Users may receive unexpected Test notifications on their mobile devices.

August 27, 2020 10:15 AM CEST
Some users may receive unexpected Test notifications on their mobile devices User Impact: Users may receive unexpected Test notifications on their mobile devices. More info: Users may receive notifications that state: "FCM Messagess : Test Notifications" Current status: We’re investigating an issues were users may receive test notifications on their mobile devices. We'll provide an update within 30 minutes.

user1435 27 Aug 2020 09:44:14 GMT
Glad to know its not just me!! HaHa! This is annoying! Hope its fixed soon!

user3045 27 Aug 2020 09:09:24 GMT
This is trending on Twitter as well ... any official word from Google or Microsoft?!!
anon1342 27 Aug 2020 09:08:36 GMT
This is trending lol ... Japan, Australia, New Zeland, USA, India everywhere!
user2842 27 Aug 2020 09:24:13 GMT
I got five in the last 30 mins. iPhone X using Hangout - Australia
user229 Aug 2020 08:10:43 GMT
I am from US, woke up at the middle of the night!!
user229 Aug 2020 08:10:11 GMT
I am using Microsoft teams for family and my mother is asking what is it? :D, the good this is there is no link associated with this message yet I have asked her to be cautious.
user227 Aug 2020 08:09:58 GMT
I am a bit concerned now! Now getting this message quite often?
aus20 27 Aug 2020 08:09:23 GMT
This seems to be happening all over the world!
ank2132 27 Aug 2020 08:08:57 GMT
What Test are they performing? Did they Mircorsot send out any official message about this?
ank2132 27 Aug 2020 08:08:11 GMT
Further comments disabled!