Over 500,000 Hacked Zoom Accounts Being Sold on Dark Web and Hacker Forums for Free which includes included ones for well-known companies such as Chase, Citibank, college students from several universities, and more.
Over 500,000 Hacked Zoom Accounts Being Sold on Dark Web and Hacker Forums.
Zoom Accounts Sold on Dark Web and Hacker Forums
As reported by the Bleeping Computer, Over 500,000 Zoom Accounts are being sold on the dark web and hacker forums for less than a penny each and in some cases, they are being given away for free.
Moreover Hacked Zoom accounts included ones for well-known companies such as Chase, Citibank, college students from several universities, and more.
Further, The report adds that this information about free Zoom accounts being posted on hacker forums was first pointed out by Cybersecurity intelligence firm Cyble around April 1st, 2020.
They began to see free Zoom accounts being posted on hacker forums to gain an increased reputation in the hacker community. The firm then reached out to the sellers of these accounts and bought 530,000 Zoom credentials at $0.0020 per account, in an attempt to warn their customers of the breach.
The purchased accounts include a victim's email address, password, personal meeting URL, and their HostKey.
These credentials are gathered through credential stuffing attacks where threat actors attempt to login to Zoom using accounts leaked in older data breaches. The successful logins are then compiled into lists that are sold to other hackers.
Zoom accounts offered for Free:
Bleeping Computer shared a list of 290 accounts related to colleges such as the University of Vermont, University of Colorado, Dartmouth, Lafayette, University of Florida, and many more were released for free.
Both Bleeping Computer and Cyble claim they have verified some of these accounts and that the credentials used were valid.
So what does this mean for you? If you are using Zoom, It is highly advisable that users change their Zoom passwords, especially if the same password is used elsewhere. They should try to use unique passwords for each site. Users can also check if their email address has been leaked by going to Cyble AmIBreached service or Have I Been Pwned service.
So what does this mean for you? If you are using Zoom, It is highly advisable that users change their Zoom passwords, especially if the same password is used elsewhere. They should try to use unique passwords for each site. Users can also check if their email address has been leaked by going to Cyble AmIBreached service or Have I Been Pwned service.
COMMENTS