Cybersecurity News: Zoom app hacked by cybercriminals

Updated: May 20, 2020

Zoom, a video conferencing app was hacked by cybercriminals called “Zoombombing” sending malicious activities such as pornographic images, eavesdropping and used of racial slurs to obstruct video conferences.

Zoombombing - It's not a new exercise craze

Malicious, discriminatory and even pornographic crimes have climbed up recently as the current video conferencing app Zoom has been hacked by cybercriminals, using a method called “zoombombing.”

As millions of Americans turn the way they do business with stay-at-home orders because of the novel coronavirus pandemic, apps like Zoom Video Communications Inc. became in demand.

The company said the number of users grew more than 200 million in March, up from just 10 million at the end of December 2019.

That has presented cybercriminals and hackers with an interesting possibility.

The FBI announced a warning about hackers sending “malicious movements” by dropping in uninvited to Zoom calls to listen and use racial reproaches and even pornographic images to interrupt meetings.

Zoom said in a blog post, there were actions you can do to evade being “zoombombed.”

  • Do not give up control of your screen.

  • Only recognize signed-in users to join your meeting.

  • Lock your meeting after it begins to block new participants from joining after the meeting starts.

  • Disable video.

  • Mute participants or put them on hold.

  • Turn off file transfer and annotations.

  • Disable private chat.

Here are various ways you can guard yourself and your business from these cybercrimes, like “zoombombing.”

  • Select trusted and reliable telework software vendors; administer additional due attention when choosing foreign-sourced vendors.

  • Limit access to remote meetings, conference calls, or virtual classrooms, including the use of passwords if possible.

  • Beware of social engineering tactics directed at revealing sensitive information. Make use of tools that hinder suspected phishing emails or enable users to report and quarantine them.

  • Beware of ads or emails indicating to be from telework software vendors.

  • Always check the web address of trustworthy websites or manually type it into the browser.