More than half a million Zoom video conferencing user accounts are up for sale on the dark. The cost of one account is tenths of a cent, and sometimes they are generally distributed free of charge.
Such databases, writes BleepingComputer, are formed by the test login method using login-password pairs that have leaked from other services earlier. Successfully activated pairs are added to a new database for resale.
They started distributing accounts found in this way on the darknet for free in the first days of the month - this is how hackers who did this tried to arouse the trust of potential buyers. This publication was reported in the company Cyble, specializing in computer security. Journalists made sure that many of the accounts belong to real people.
The database sold by hackers includes not only logins and passwords, but also unique URLs for the conferences they create, as well as a unique six-digit key for the conference organizer (HostKey). Among the organizations and companies whose mailing addresses of employees are included in the sales base, there are large American universities, as well as Chase and Citibank banks.
It is recommended that all Zoom users, regardless of their address in the database, change their account password if the same password is used elsewhere. You can check if your address is in major leaks on Have I Been Pwned or AmIBreached sites .
No comments:
Post a Comment