all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Don’t Let Zombie Zoom Links Drag You Down

Add to bookmarks
Oct. 2, 2023, 3:43 p.m. | BrianKrebs

Krebs on Security krebsonsecurity.com

Many organizations — including quite a few Fortune 500 firms — have exposed web links that allow anyone to initiate a Zoom video conference meeting as a valid employee. These company-specific Zoom links, which include a permanent user ID number and an embedded passcode, can work indefinitely and expose an organization’s employees, customers or partners to phishing and other social engineering attacks.

a little sunshine charan akiri conference don down embedded employee employees expose exposed latest warnings linkedin links meeting organization organizations passcode the coming storm valid video video conference web work zombie zoom

Visit resource

More from krebsonsecurity.com / Krebs on Security

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years 1 day, 18 hours ago | krebsonsecurity.com
antii kurittu coldfusion botnet convicted hacking +15
FCC Fines Major U.S. Wireless Carriers for Selling Customer Location Data 2 days, 11 hours ago | krebsonsecurity.com
access amp att carriers +25
Russian FSB Counterintelligence Chief Gets 9 Years in Cybercrime Bribery Scheme 1 week, 2 days ago | krebsonsecurity.com
alexander kovalev a little sunshine artem zaitsev bribe +28
Who Stole 3.6M Tax Records from South Carolina? 2 weeks, 1 day ago | krebsonsecurity.com
account aleksandr ermakov associated press bank +34
Crickets from Chirp Systems in Smart Lock Key Leak 2 weeks, 2 days ago | krebsonsecurity.com
a little sunshine august.com can chirp systems +22
Why CISA is Warning CISOs About a Breach at Sisense 2 weeks, 6 days ago | krebsonsecurity.com
agency a little sunshine breach business +28
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers 3 weeks ago | krebsonsecurity.com
april change com domain +15
April’s Patch Tuesday Brings Record Number of Fixes 3 weeks, 1 day ago | krebsonsecurity.com
adobe after effects april azure azure ai +38
Fake Lawsuit Threat Exposes Privnote Phishing Sites 3 weeks, 6 days ago | krebsonsecurity.com
alexandr ermakov a little sunshine andrey sokol breadcrumbs +26

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Application Security Engineer - Remote Friendly

@ Unit21 | San Francisco,CA; New York City; Remote USA;
View on infosec-jobs.com

Cloud Security Specialist

@ AppsFlyer | Herzliya
View on infosec-jobs.com

Malware Analysis Engineer - Canberra, Australia

@ Apple | Canberra, Australian Capital Territory, Australia
View on infosec-jobs.com

Product CISO

@ Fortinet | Sunnyvale, CA, United States
View on infosec-jobs.com

Manager, Security Engineering

@ Thrive | United States - Remote
View on infosec-jobs.com
View more jobs