Back to top

Are Your Zoom Credentials on the Dark Web?

Greg Manson

Cybercriminals have been working hard to design attacks that exploit new vulnerabilities created by the COVID-19 pandemic. A new detailed research report released from InSights, a threat intelligence firm, reveals the impact or cyber threats from COVID-19 and details what cybercriminals are getting away with – everything from phishing attacks to malware to scams and hoaxes.

One of the most interesting finds of the report is the stark increase in vulnerabilities and exploits pertaining to video conferencing and collaboration tools in the dark web forums. Since the start of the COVID-19 pandemic, most of the workforce has been required to work from home and these cybercriminals found a way to gain access to these collaboration and communication tools, like Zoom.

According to the report, both personal and corporate Zoom account information was shared on the dark web from a wide variety of industries, including banks, consultants, healthcare, software, and educational facilities. The credentials listed for some included an email and password, while others revealed meeting IDs, names, and host keys.

Since so many businesses are still working from home, what can you do to protect your Zoom account from getting breached? And how can you find out if your company credentials are already on the dark web?

  • Step One – Check to see if any of your accounts have been involved in a data breach. You can start by using a free service called Have I Been Pwned or pwdquery to see if the email or passwords associated with your Zoom login are floating around the web. If it is, you should start updating your various accounts with new, unique passwords and strong security settings like two-factor authentication.
  • Step Two – Change your Zoom settings. If you suspect that someone may have hacked your Zoom account, you’ll want to change your personal meeting ID as well as your six-digit host key.
  • Step Three – Enable all security features on Zoom and update your app as much as possible. Be sure to set a password for all meetings and enable ‘Embed password in meeting link for one-click join.’ This prevents an unwanted participant from joining your meeting without losing the ability of sharing a link to join the meeting. Also, check your app settings to also notify you when participants have joined the meeting prior to the host.  This will ensure that someone else is not using your account.

These are just a few of the things you can do to prevent your credentials from making their way onto the dark web. If you have taken the steps above and still feel like your company’s usernames, passwords and personal information have been stolen then it may be time to run a breach report. To help keep organizations like yours safe, our experts have created a Free Breach Report that provides a custom report based on your company’s URL.

If you want to learn more about what other security measures you can be taking, contact us today.