【】
我要评论Zoommay have fixedmany of its own security issues, but it’ll never be immune to hackers trying to trick the company’s users.
Malicious actors are now targeting users with fake Zoom meeting emails in order to steal their personal information and login credentials, according to email cybersecurity firm Abormal Security.
This particular phishing scheme uncovered by Abnormal Security weaponizes many people’s fear of losing their job due to the economic downturn during the coronavirus pandemic. To date, more than 26 million people in the U.S. have filedfor unemployment since the pandemic began.
These spoofed emails come in the form of a Zoom meeting reminder with HR concerning the termination of the recipient’s employment.
The email contains a Zoom meeting invitation link, which is actually the hacker’s phishing site designed to mimic the look of Zoom’s login page. In reality, clicking the meeting link forwards the target to a page hosted at the URL “zoom-emergency.myftp.org.”
“When the victim reads the email they will panic, click on the phishing link, and hurriedly attempt to log into this fake meeting,” explains Abnormal Security’s report. “Instead, their credentials will be stolen by the attacker.”
Email security researchers say this attack has successfully found its way into more than 50,000 mailboxes.
Zoom has experienced tremendous growth since the beginning of the global coronavirus pandemic. With several countries instituting lockdowns, quarantines, and stay-at-home orders, many businesses have transitioned their employees to work-from-home arrangements.
The video conferencing company recently announcedit had more than 300 million active users. This surge in user adoption provideshackers, scammers, and other malicious actors with a whole new market to exploit.
A reportearlier this month found that more than 500,000 stolen Zoom accounts were being bought and soldon the dark web. Hackers frequently gain access to these accounts through spoofed emails and phishing pages like the one described in this latest security report.
Readers should always be careful when clicking links in an email that require login credentials. Always double-check the sender’s email address and the attached link.
And if you're still not sure, take this extra cautionary step: If you receive an email link purporting to be from Zoom or any other website for that matter, don't click! Just type out the official URL for that website in the web browser yourself.
TopicsCybersecurity
相关文章
This German startup wants to be your bank (without being a bank)
BERLIN -- “That is f*cking clever,” said Ben Floyd, 33, as we sat in a trendy cafe in Be2025-04-30
The best Apple deals for August 2024: Back to school savings
Table of ContentsTable of ContentsUPDATE: Aug. 14, 2024, 5:00 a.m. EDT Check out the latest Apple de2025-04-30
Wordle today: The answer and hints for August 12
Oh hey there! If you're here, it must be time for Wordle. As always, we're serving up our daily hint2025-04-30
'House of the Dragon' Season 2, episode 6: Who is Daeron, Alicent's other son?
It's easy to forget, but Alicent Hightower (Olivia Cooke) actually has fourchildren in House of the2025-04-30Plane makes emergency landing after engine rips apart during flight
A Southwest Airlines flight bound for Orlando, Florida, made an emergency landing Saturday morning d2025-04-30
Apologetic Crowdstrike sends out $10 UberEats vouchers. Some of them don't work.
If your productivity ground to a halt on Friday because of the worldwide epidemic of Windows crashes2025-04-30
最新评论