By Anthony Berrios
Blog Post #17
Researchers have recently discovered a database that shared an underground forum containing more than 2,300 compromised Zoom credentials. This includes both usernames and passwords for Zoom account. These accounts included corporate accounts belonging to banks, consults, educational facilities, healthcare providers, and software vendors. Some of the accounts included meeting IDs, names and host keys in addition to credentials. Researchers said that they were surprised at the amount of conversation about vulnerabilities and exploits pertaining to video conferencing collaboration tools in the deep web forums. Now that the workforce has transitioned to remote work from their homes, cyber criminals are looking for ways to gain access to communication companies like Zoom.
This is not a good look for Zoom who’s stock has recently soared as the corona virus has successfully shutdown schools and businesses across the country, making means of online communication via companies like Zoom became in high demand. The lack of security features from Zoom’s side is alarming, but hopefully with their increased stock value they will have plenty of money and resources to work out these vulnerabilities so that they can no longer be exploited.
Zoom’s vulnerabilities as of late has been a real issue for not only companies but mainly educational system like Universities. A lot of of the time hackers don’t even have to hack into these meetings as a lot of people have been flat out giving away their meeting information for the world (and hackers) to see. Although some content creators have been “crashing” Zoom meeting for funny YouTube content, more serious and less laughing-minded hackers have caused real havoc.
PC Security & News 