• Dark Web marketplaces are reportedly selling more than 500,000 Zoom account credentials.
  • Users who recycle their passwords appear to be at the highest risk of a security breach.
  • Zoom could seemingly do better to enhance its internal security to avoid unauthorized access.

The past few weeks have been a mixed bag for Zoom. While the firm has continued to see surging user numbers as a result of the coronavirus, its privacy and security flaws have also been highlighted.

In the latest privacy headache, thousands of Zoom account details were reportedly found on the dark web.

Account Information Is Selling for Cheap

Per Bleeping Computer, the discovery was made by researchers at Cyble, a third-party cyber-threat platform. Cyble revealed it found up to 530,000 Zoom accounts and their details — including passwords, email addresses, and personal meeting URLs. The researchers tested some of the credentials and found them to be valid.

As the firm explained, the discovery was mostly the result of credential stuffing. In this process, hackers use the same details from previous successful security breaches on new platforms, considering many people have the habit of reusing the same password on multiple services.

While some account credentials are being sold for free, others go for less than a cent each. Researchers also posited that some hackers are doing this for the sake of gaining more popularity on the dark web.

Users Reusing Passwords

Per the report, one of the user’s passwords had not been changed in a long time. This gives cause for speculation that a lot of the credentials could also be old and outdated.

Of course, the fact that hackers still have these details means that they can always try them on new services and use brute force hacking to gain access. For many users, the best way to prevent this likelihood is to use unique passwords on different services.

As for Zoom, the company isn’t entirely at fault on this one. The teleconferencing app can’t do much to restrict users from recycling old passwords that hackers already have access to when signing up. However, the firm could have introduced several security features that restrict unwanted access to users’ accounts. This is where two-factor authentication comes in.

Still, Zoom has endured its fair share of criticism in recent weeks. Reports of hackers gaining access to private chats and “zoombombing” meetings have been prominent in the past month, and the firm has also found itself on the blacklist of several organizations as a result of these privacy concerns.

Jimmy Aki

Based in the UK, Jimmy has been following the development of blockchain for several years, and he is optimistic about its potential to democratize the financial system. He's an economic researcher with outstanding hands-on and heads-on experience in Macroeconomic finance analysis, forecasting, and planning. He has honed his skills having worked cross-continental as a finance analyst, which gives him inter-cultural experience. He has a strong passion for regulation and macroeconomic trends as it allows him to peek under the global bonnet to see how the world works. Follow him on Twitter: @adejimi

Follow Author

Want to know more?

Join our Telegram Group and get trading signals, a free trading course and daily communication with crypto fans!

This site uses cookies.
Click here to accept the use of these cookies. View our cookie policy

We are discussing it in our Telegram Channel

Join

Free crypto community in our Telegram Channel

Join Now

We are discussing it in our Telegram Channel

Join

We are discussing it in our Telegram Channel

Join