For coping with the worldwide impact of Coronavirus, many businesses are making large-scale adjustments and shifting to work remotely. This has increased the dependency of conferencing tools. Zoom has emerged as the winning choice, but the service is in news for all the wrong reasons. It is learned that credentials of more than 500,000 Zoom Account details & passwords were lined up for sale on a Hacker Forums.
500,000 Zoom Account credentials leaked
The COVID-19 outbreak has changed the way corporations work. New users have started moving to Zoom video conferencing platform to meet safely. As the service is witnessing a surge in popularity, reports of Zoom facing a privacy and security backlash have started doing rounds.
Cyble.io, a Singapore based firm, was the first to discover the breach in Zoom after it came across lists of email addresses and passwords on ‘text sharing sites’. Over 500 hundred thousand Zoom accounts are available for sale on the dark web and hacker forums. Sellers were advertising them for .0020 cents each and in some cases, they are offered for free.
Cyble cybersecurity firm first purchased over half a million credentials from an underground hacker forum. Thereafter, its team of experts conducted a thorough checking to determine if the data was valid. After confirming the validity of the data, it was found that email addresses, passwords, personal meeting URLs, and HostKeys of the victims were leaked. Following this, customers were informed about the leak.
Cyble mainly provides real-time visibility to OSINT, Dark Web and enabling organizations to gain visibility to 3rd-party cyber threats. They also informed affected customers about the leak.
The leak once again puts the onus on the habit of using strong and unique passwords. Many continue to use the same username and password to log in to multiple services online, despite repeated warnings. So, change your password and stay safe!