For the last few weeks, Zoom has been the epicenter of security issues with experts revealing faults in the app every other day. According to BleepingComputer, cybersecurity intelligence firm Cyble spotted the accounts for sale starting April 1. They are currently for sale on the dark web and other hacker forums for less than a penny apiece. Some of the accounts are even being given away for free.
Those affected include several US universities, such as the University of Vermont, University of Colorado, Dartmouth, Lafayette, University of Florida, and more. Other affected well-known companies include Chase and Citibank.
The stolen accounts include the victims’ email addresses, passwords, personal meeting URLs, and their Zoom HostKeys. Cyble purchased approximately 530,000 of these accounts at about $0.002 each and began warning its customers of the breach.
Over 500,000 Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free.
These credentials are gathered through credential stuffing attacks where threat actors attempt to login to Zoom using accounts leaked in older data breaches. The successful logins are then compiled into lists that are sold to other hackers.
Some of these Zoom accounts are offered for free on hacker forums so that hackers can use them in zoom-bombing pranks and malicious activities. Others are sold for less than a penny each.
