The Zoom video conferencing software has had a sudden surge in popularity due to its awesome video conferencing capabilities. The COVID pandemic has further fueled the demand for this service. Unfortunately however, Zoom has been plagued with security problems. In fact many companies and government organisations have been asked to stop using the product. Zoom in response has pledged to improve their security…or so we thought.
This month, a trove of half a million Zoom accounts has been found for sale on the Dark Web. These accounts which can be bought for as little as $0.002 include information such as email addresses, passwords and host keys linked to meeting URLs. This was identified as a credential stuffing attack, which consists of hackers making use of previously stolen details on a massive scale to breach a different company.
If you’re still forced to use Zoom, to protect yourself change your Zoom password, make sure you have not reused your Zoom password for any other website, wherever possible use 2-Factor Authentication, furthermore keep your Zoom link/code to yourself, use passwords for meetings, check the integrity of the meeting attendees and always make sure you update your Zoom application to the latest version.