Hundreds of thousands of Zoom accounts are being sold or given away for free on the dark web and hacker forums, according to a new report by BleepingComputer.
Zoom has surged in popularity in recent weeks as the number of people working from home has increased, but concerns about the videoconferencing app's security have also made the headlines. However, the availability of Zoom accounts on the dark web does not appear to be a direct consequence of the app's failings.
Rather, the sale of the login details are said to be the result of "credential stuffing attacks," where hackers attempt to log in to Zoom using accounts leaked in older data breaches.
Successful logins are then collated into lists and sold on or offered for free to other hackers, with the intention of using them in zoom-bombing pranks or for malicious reasons.
The accounts are reportedly being shared via text sharing sites as lists of email addresses and password combinations. The accounts can include a victim's email address, password, personal meeting URL, and their HostKey.
Zoom accounts sold on hacker forums
Cybersecurity firm Cyble, which was able to purchase 530,000 Zoom credentials for less than a penny each at $0.0020 per account, said the Zoom accounts began appearing in the hacker community at the beginning of April, with hackers offering the accounts to build reputation.
The finding underscores the importance of using unique passwords for each website where an account is registered. Concerned users are encouraged to check if their email address has been leaked in data breaches using the Have I Been Pwned website or Cyble's AmIBreached data breach notification service, and change their Zoom password if used elsewhere.
Tuesday November 5, 2024 5:02 am PST by Tim Hardwick
Apple News is providing Live Activities support for the 2024 U.S. presidential election, allowing iPhone and iPad users to track electoral results in real time directly from their Lock Screen.
The feature is rolling out for U.S. users over the course of Election Day, November 5, providing continuous updates of the electoral count. So if you're interested, you don't need to repeatedly check...
Monday November 4, 2024 12:34 pm PST by Juli Clover
Apple today seeded the second betas of upcoming iOS 18.2 and iPadOS 18.2 updates to developers, and Apple is continuing to refine the Apple Intelligence capabilities. There are also a handful of smaller features that are worth knowing about.
Find My
Find My has a new option to Share Item Location with an "airline or trusted person" that can help you locate something that you've misplaced....
Monday November 4, 2024 10:54 am PST by Juli Clover
With the second beta of iOS 18.2 that's available for developers today, Apple has further fleshed out the ChatGPT integration that's available with Siri. In the Settings app, there's now a section that shows the ChatGPT daily limit, and offers an option to upgrade to the paid ChatGPT Plus plan.
The beta includes an Advanced Capabilities section with a "Daily Limit" reading that shows up as...
Friday September 13, 2024 7:39 am PDT by Joe Rossignol
Apple has started notifying users about an upcoming revision to its iCloud Terms and Conditions, which takes effect on Monday, September 16.
We compared the text of the upcoming iCloud Terms and Conditions with the current U.S. version from September 18, 2023 and identified four key changes:
"Apple ID" references have been changed to "Apple Account" throughout.
iCloud users must agree to ...
Black Friday is still a few weeks away, but you can already find great prices on numerous iPads, including the 9th generation iPad, 10th generation iPad, iPad Air, and iPad mini.
Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running.
Of course, there is a chance that ...
Monday November 4, 2024 2:36 am PST by Tim Hardwick
Apple's fall 2024 Mac announcements have included new iMac, Mac mini, and MacBook Pro models, all of which debuted with variants of Apple's M4 chip. Apple intends to update the rest of its Mac lineup with M4 series processors over the next 12 months, which will make it the first time that Apple has used the same chip generation across all of its Macs.
This means we can expect new M4...
Thursday October 31, 2024 9:42 am PDT by Tim Hardwick
Apple is set to release iOS 18.2 in December, bringing the second round of Apple Intelligence features to iPhone 15 Pro and iPhone 16 models. This update brings several major advancements to Apple's AI integration, including completely new image generation tools and a range of Visual Intelligence-based enhancements. There are a handful of new non-AI related feature controls incoming as well.
...
Apple could end this right now and assume the mantle of king of quarantine videoconferencing.
FaceTime has already become a proprietary eponym in the way that you make a xerox of a document or ask for a Kleenex after you sneeze. FaceTime has become even more popular during this time but people have to seek out alternatives when just one member of the call you want to place is an Android user.
1. Offer an Android FaceTime client without all the bells and whistles. Allow Android users to join in on a call. Limit it to just cameras. No Animoji or any of the fun stuff. It’ll make Android users want to get an iPhone.
2. Allow FaceTime to broadcast online with a link that anybody with the link can join. Allow the leader to control who, if anybody, can speak.
3. Optionally, Apple can also go after the work from home, corporate market by adding desktop sharing and whiteboard features.
Apple is missing a huge opportunity to make FaceTime mainstream.
Zoom is the pinnacle of garbage (Kinda like Yahoo was two years ago with their security breaches). Rather others disagree with me, there’s a reason why companies don’t trust ‘Zoom’ When it comes Security risks companies/agency information being exposed.
Zoom didn’t have a data breach, unlike Yahoo. This looks like it’s just hackers reselling logins and passwords from previous leaks on other platforms. Some of them happen to work on zoom because people reuse their passwords.
But so do people who have used the iOS/macOS generated strong password for a Zoom account still need to change their password, etc?
As long as you haven’t reused it anywhere else, there is little chance that the generated password is leaked. Of course, it wouldn’t hurt to be on the safe side either.
I don't get it, WebEx is the same price and more secured.
We migrated from Webex after spending a fortune on outfitting our conference rooms with cameras, Cisco proximity boxes etc. and then spent almost every day afterwards dealing with problems as a result. The firewall configurations alone for Webex were a bloody nightmare.
For all it's perceived issues, Zoom has been relatively stable for us and significantly cheaper.
Google gives you the GSuite for free, all you have to do is give them all your information and all the information about your contacts.
Zoom records your meeting and stores it on Chinese servers (even "private" (ROFL) meetings. All they offer is a built in grid view that looks "pretty".
Facetime could take off if they removed the Apple ID function, but without that they can't really get your info.
These apps are all about harvesting your data. They are not about anything but that. I don't have a computer for Zoom, not personally or professionally. It's like chewing tobacco...I don't have a hole dirty enough to put that in.