Wired
In order to prevent the spread of new coronavirus infection, remote work and home learning are recommended in many countries and regions, and the number of users of the video conferencing service “Zoom” is increasing rapidly, but the account login information I received information that is being sold at a low price.
Was the method of credential stuffing used?
According to the computer help site BleepingComputer, there are over 500,000 logins for Zoom accounts sold on the dark web and hacker communities.
The login information, which consists of the email address, password, personal meeting URL, and host key, is obtained by the method of attempting to log in using the information leaked due to the data leak of the irrelevant service called credential stuffing. It seems that
Security company Cyble is reportedly able to purchase login information for 530,000 Zoom accounts for $ 0.0020 per account. Zoom account information has been available on the hacker community website since early April.
Account information used for “Zoom-Bombing”
The purchased login information is expected to be used for “Zoom-Bombing”, an offensive video sharing for video conferencing.
In Singapore, where home study is recommended, a suspicious man broke in during a remote class using Zoom and it was just reported that he was showing obscene things.
Many experts have pointed out the security vulnerabilities of Zoom, and several government agencies and companies have already requested that employees and employees stop using the service.
Source: BleepingComputer via MacRumors, Cloudflare
(lexi)
Source: iPhone Mania