As Zoomconfronts numerous security issues amid a spike in use of the service during the coronavirus pandemic,?? ??? ??? ??? yet another problem for the video conferencing platform has entered the stage, thanks to the dark web.
Cybersecurity firm Sixgill recently discovered a collection of 352 Zoom accounts that had been compromised. The accounts were shared by a user on a popular dark web forum; information included each account’s connected email address, password, meeting ID, host key, and host name.
A screenshot of the original post sharing stolen Zoom credentials on a popular dark web forum. Credit: sixgill The stolen credentials were even labeled by type of Zoom account, meaning some of the stolen information included users paying for a higher-tier service plan.
“In comments on this post, several actors thanked him for the post, and one revealed intentions to troll the meetings,” said Dov Lerner, security research lead at Sixgill, in a statement provided to Mashable.
But online trolling isn't the only thing people could do with the information shared from these Zoom accounts.
“The accounts could certainly be used to troll the owner of the account or those who are joining the owner's calls, but these credentials could also be used for corporate or personal eavesdropping, identity theft, and other nefarious actions,” Lerner explained. “There's a number of ways a malicious actor could use these stolen accounts.”
This is especially concerning when looking at who the accounts belong to. According to Sixgill, while its researchers found that most of the 352 accounts were personal, some belonged to educational institutions and small businesses. One of the accounts was that of a major U.S. healthcare provider.
So, what is the "dark web" where these accounts were posted? In the simplest terms, the dark web encompasses websites, forums, and other online destinations that require a special web browser called Tor to access. You cannot visit these sites by just typing a URL into Google Chrome or Firefox. They aren’t visible to search engines — the dark isn’t discoverable when searching for them on Google.
Users on the dark web forum where the Zoom accounts were posted were thrilled to see the stolen information. Credit: sixgill The collection was found by Sixgill on April 1, as criticism was being leveled at Zoom for its securityand privacy practices. While the video teleconferencing company has blown up in popularity during the coronavirus pandemic, the newfound success has also brought to light issues with the service.
Security experts have noted how the service can be used by employers to effectively spyon their employees at home. The application was discovered to be unnecessarily providing user datato Facebook, as well as mining LinkedIn to unmaskanonymous users without their knowledge. A bug was uncoveredthat allowed hackers to steal your Windows passwords through Zoom.
Security issues became so prevalent that a new colloquialism, “Zoom-bombing,” was coined to specifically define the act of finding a meeting ID and crashing a Zoom teleconference. The accounts discovered by Sixgill included meeting IDs, which means all those users could be targeted by this act specifically.
Things became so bad that last week, Zoom’s CEO Eric Yuan apologized for the issues and announcedthe company was going to focus on fixing its security and privacy bugs over the next 90 days.
One thing Zoom should work on in these coming months: figuring out how a malicious actor got their hands on account credentials belonging to 352 of its users.
Topics Cybersecurity Privacy COVID-19
Not Your Ordinary Summer Camp
Takano’s Statement on President Biden Reversing Trans Military Ban
JACL Lists DOR Events Across the Country
Matsui Meets with Biden, Harris at White House on Economic, Security Issues
Memorial Day Service at Gardena Valley JCI
Hirono Statement on Nominations of Walsh as Secretary and Su as Deputy Secretary of Labor
Valve's Major rulebook takeaways and what they mean for PGL Antwerp
‘Steeping History: Tea Across Generations’ on Sunday
PFLAG San Gabriel Valley API Chapter Marks 5th Anniversary
Protection and Safety with Style
He Has Plans for Alhambra
Keiro Board Asked to Prevent Pacifica from Shutting Down ICF
Healthy Japanese Home Cooking Workshop
Outdoor Dining Resumes in Little Tokyo
‘Go For Broke Spirit’ Book Event at GVJCI
UCLA CHPR Releases COVID
Fundraiser, Protest Planned After Asian Man Is Killed in Assault
OBITUARY: Eunice Sato, 99; First Female Mayor of Long Beach
UPDATED: Those We Lost in 2017
JANM Programs to Focus on Community Heroes, Dodgers, Fujima Kansuma
Sacramento Kings vs. Chicago Bulls 2025 livestream: Watch NBA onlineMilwaukee Bucks vs. New York Knicks 2025 livestream: Watch NBA onlineThe 15 best fiction books of 2024, according to BookTokDreame L20 Ultra Robot Vacuum deal: Save 57% at AmazonSpotify Wrapped 2024: The 10 mostSan Antonio Spurs vs. Los Angeles Lakers 2025 livestream: Watch NBA onlineCyber Monday robot vacuum deals live: The best Roombas and Sharks still at recordBest Cyber Monday cordless power tool deals at AmazonBest Samsung TV deal: Samsung 55Best Apple iPad Mini deal: Save $100 at Best Buy IT PAYS TO KNOW: Why Older People Fall The Legacy of Lumbini Decentralized App. Integrate Sui’s Groundbreaking "zkLogin" Google Authentication Koto Reunion and Workshop to Kick Off Series of Events Celebrating June Kuramoto’s Career Suma Sugi Yokotake: The Woman Who Became the First JA Lobbyist (Part 1) Three Noted Actors to Present Imagine Little Tokyo's Winning Stories Ensemble Tenshi to Open at Broadwater Mainstage Fukushima Fellowship Created at Deep Springs College DeGate: Embarking on a New Era with Mainnet Launch East West Players Announces New Artistic, Managing Directors
0.1396s , 9862.2421875 kb
Copyright © 2025 Powered by 【?? ??? ??? ???】Enter to watch online.Stolen Zoom passwords and meeting IDs are already being shared on the dark web,Global Perspective Monitoring
