The controversial application of Zoom videoconferencing, which, after rising as a result of a coronavirus, has been placed at the center of a direct dispute over security breaches in its operations, has now returned: half a million user accounts are traded on the dark side of the Internet. In fact, 500,000 accounts have been stolen and the attackers are trying to sell them to provide the web.
However So far it's not Zoom's fault, but its users themselves. This would have used the same Zoom password as in other web services. Therefore, one needs an algorithm that can capture the Internet information of stolen emails with their passwords and try their luck in Zoom, earning at least 530,000 accounts.
He loves you | More than one billion accounts have been exposed in what has already been one of the largest creations in history
I mean the leak creates you again from other websites that have been flooded in the past, but most accounts are active, showing how people use the same email and password in all their profiles on the Internet, allowing, when someone gets their password, to access all of their services. Therefore, if you have an account to zoom in or use the same password for different web services, we strongly recommend changing it as soon as possible.
More than half a million accounts are legal: change your password
According to Lost Computer, this list of accounts and passwords, including other details such as the private meeting link and the individual account management button for ** 530,000, Purchased by Cyble security company for just $ 1,000 -To notify users that they have been robbed–, which leaves the total number of units per these accounts for $ 0.002. In other words, with a pen, we can buy credentials for up to five Zoom accounts.
But there's another thing: the same company says that from April 1 these accounts can be found on black web forums completely free After all, they are account credentials that have been circulated for many months. Sleep Computers has contacted some of those accounts on a regular basis, and while some people say those passwords were there, many others still work.
The company itself has seen this to be true – although the fact is, as we have pointed out, they are not guilty of it – and it has just hire a security company to help find out which accounts are affected, so that these users are forced to change their password.
He loves you | Why the FBI recommends not using passwords: what to do instead
"It is common for web services to provide users with attacks of these types of attacks that often involve dangerous people, to check a large number of accounts from other platforms to see if users have used them. restricted accounts, ask users to change their passwords to find something more secure and we are looking at using more technology to strengthen our work, ”Zoom explained to Bleeding Computer in a statement.
Follow Andro4all
