More than 300 comprised Zoom accounts have been posted on a dark web forum, exposing personal information, according to a new report.
Yahoo Finance reports that cybersecurity firm Sixgill found the collection of 352 compromised accounts on a popular dark web forum. The links included email addresses, passwords, meeting IDs, and other information.
Some of the accounts belonged to a U.S. healthcare provider, educational institutions, and a small business, the report says. The dark web is a portion of the internet that require the browser Tor to access. It isn’t visible on standard search engines.
“The accounts could certainly be used to troll the owner of the account or those who are joining the owner’s calls, but these credentials could also be used for corporate or personal eavesdropping, identity theft, and other nefarious actions,” Dov Lerner, the security research lead at Sixgill told Mashable.”There’s a number of ways a malicious actor could use these stolen accounts.”
Zoom, a video conferencing software, has seen a surge in popularity in recent weeks as more and more people are working and schooling from home because of the coronavirus. During that time, a slew of privacy and digital safety issues have cropped up.
Questions have been raised about the company misrepresenting its encryption promises, its data collection practices, and reports of trolls barging into Zoom meetings, a practice that has become known as “Zoombombing.”
In response, Zoom has promised to address a number of security issues in the coming months.
Some advocacy groups and lawmakers have urged the Federal Trade Commission (FTC) to investigate Zoom in the wake of the concerns.
You can read all of the Yahoo Finance report here.