We all know that cybercriminals are always taking advantage of new situations, like what we are experiencing today with COVID19, to perform better attacks. In this case, it seems that Zoom is being one of the new victims, due to its popularity and usage increase during the lockdown time.
Millions of new users, many of them who are presumably not cybersecurity experts. I don't think we have to avoid using Zoom what it is important is to stop using the same credentials everywhere and just make sure that we are protecting our meetings as well as always default security configurations can be tricky.
This is a good example of how important is not only to stop reusing compromised credentials but also to monitor them.
As the Coronavirus pandemic continues to force people to work from home, countless companies are now holding daily meetings using videoconferencing services from Zoom. But without the protection of a password, there’s a decent chance your next Zoom meeting could be “Zoom bombed” — attended or disrupted by someone who doesn’t belong. And according to data gathered by a new automated Zoom meeting discovery tool dubbed “zWarDial,” a crazy number of meetings at major corporations are not being protected by a password.