Info-tech

Hackers are selling over 5,00,000 Zoom credentials on the dark web: Report

Hemani Sheth Mumbai | Updated on April 15, 2020 Published on April 15, 2020

Hackers are selling over 5,00,000 Zoom accounts on the dark web and hacker forums for less than a penny each, and in some cases, for free according to a recent report by web platform Bleeping Computer.

Bleeping computer in the report said that they had first been informed of these accounts being posted on said platforms by cybersecurity intelligence firm Cyble who started noticing the posts around April 1.

The firm had then reached out to the sellers who had put up the account for sale and had bought credentials for 530,000 Zoom accounts at $0.0020 (approximately ₹ 0.15) for a single account in an attempt to warn the customers of the breach.

Findings

According to the report, the accounts were hacked using credential stuffing attacks. Hackers use previously leaked accounts to login to the Zoom app. The credentials that enable them to successfully log into the app are then compiled and put up for sale on the dark web.

These credentials include email address, passwords, personal meeting URLs, and HostKeys, as per the report. Almost 290 accounts from the hacked accounts were related to universities and colleges, it said.

In a statement to BleepingComputer, Zoom had said that the company is already working on finding these password dumps to reset affected users' passwords, the report said.

This is not the first instance of hackers zeroing in on the video-conferencing app that has gained massive popularity owing to global shutdowns in light of the coronavirus pandemic. According to a recent report by Motherboard, hackers have been cashing in on Zoom’s ‘zero-day’ vulnerabilities and selling data stolen from the app on the dark web.

‘Zero-day’ vulnerabilities are faults in software that hackers can use to target specific users. The price for zero-day vulnerabilities in Zoom on the dark web ranges from $5,000 to $30,000, the report said.

Zoom CEO Eric Yuan had recently held a Livestream conference acknowledging the privacy and security issues within the app ensuring that the company was working on fixing them.

Published on April 15, 2020

A letter from the Editor


Dear Readers,

The coronavirus crisis has changed the world completely in the last few months. All of us have been locked into our homes, economic activity has come to a near standstill. Everyone has been impacted.

Including your favourite business and financial newspaper. Our printing and distribution chains have been severely disrupted across the country, leaving readers without access to newspapers. Newspaper delivery agents have also been unable to service their customers because of multiple restrictions.

In these difficult times, we, at BusinessLine have been working continuously every day so that you are informed about all the developments – whether on the pandemic, on policy responses, or the impact on the world of business and finance. Our team has been working round the clock to keep track of developments so that you – the reader – gets accurate information and actionable insights so that you can protect your jobs, businesses, finances and investments.

We are trying our best to ensure the newspaper reaches your hands every day. We have also ensured that even if your paper is not delivered, you can access BusinessLine in the e-paper format – just as it appears in print. Our website and apps too, are updated every minute, so that you can access the information you want anywhere, anytime.

But all this comes at a heavy cost. As you are aware, the lockdowns have wiped out almost all our entire revenue stream. Sustaining our quality journalism has become extremely challenging. That we have managed so far is thanks to your support. I thank all our subscribers – print and digital – for your support.

I appeal to all or readers to help us navigate these challenging times and help sustain one of the truly independent and credible voices in the world of Indian journalism. Doing so is easy. You can help us enormously simply by subscribing to our digital or e-paper editions. We offer several affordable subscription plans for our website, which includes Portfolio, our investment advisory section that offers rich investment advice from our highly qualified, in-house Research Bureau, the only such team in the Indian newspaper industry.

A little help from you can make a huge difference to the cause of quality journalism!

Support Quality Journalism
This article is closed for comments.
Please Email the Editor
You have read 1 out of 3 free articles for this week. For full access, please subscribe and get unlimited access to all sections.