Meetings can now be recorded by hackers in Zoom application due to a new discovered vulnerability.
NPAV has already reported that hackers have exploited the video conferencing service provider Zoom and are compromising various meetings being conducted on it. Recent reports show that Zoom has a new vulnerability that now allows hackers to record meeting and conferences.
This vulnerability was reported to be exploited even when the recording permissions are not granted by the user. The vulnerability can not only open doors for malware attacks, but hackers can also use the opportunity to launch large scale espionage campaigns against businesses, steal secrets or credentials, and much more.
If the hackers get a window where they don’t require permissions from the host, there can be various campaigns that can be launched by the attackers. Hackers can steal various critical data and sensitive information can be leaked by exploiting this.
There are certain precautions that are recommended to be taken while using the application, some of these include enforcing complex Zoom meeting passwords by default for all users, credential stuffing is a known issue in the industry, and the Zoom application is one of the targets, users should not use their passwords in any other applications, implementing multi-factor authentication, and take all data breach monitoring measures required.
Use NPAV and join us on a mission to secure the cyber world.