Elaborating on the effectiveness of these methods, the researchers state: In the case of attachments, a fake page that was mostly hosted on the attacker’s computer was opened asking for the same details. Instead of asking users for Zoom details, once someone clicked on the links, they were instead redirected to a very real looking Microsoft Office365 or Outlook login page which in reality was of course fake. However, there’s a twist in the next step. Moreover, these also help bypass an email provider’s conventional filters.
These originated from both hijacked accounts and also newly purchased domain names such as zoomcommuncationscom and zoomvideoconfrencecom which gives an aura of legitimacy to anyone who looks a bit deeper. To start with, the attackers sent very convincing phishing emails to Zoom users with a variety of messages including but not limited to reviewing a meeting invitation, downloading a file attached to access details about a meeting invitation, and downloading a particular attachment to start the meeting in itself. Keeping this in mind, in the latest, researchers from INKY have revealed how the app is being subject to a dedicated phishing campaign in several countries designed to extract credentials from users.
With over 300 million participants every day, this makes Zoom a highly lucrative target for malicious elements. Initially targeting Zoom users the phishing scam aims for Outlook and Office365 credentials.Īs the digital world deals with the added responsibility of hosting more and more meetings online, popular video conferencing apps like Zoom and Microsoft Teams have increasingly come under fire from cyber criminals.
0 kommentar(er)
