Although this specific instance doesn’t involve issues on Zoom’s side, it is still affecting their users. Abnormal Security discovered a campaign that involves attackers sending fake Zoom links through email in an effort to steal personal information and account credentials. The attackers are preying on the fear of people losing their jobs by sending Zoom meeting reminders with HR to discuss the termination of the recipient. The email includes the fake Zoom link which will actually take the target to a phishing site set up to look like the Zoom login page. Researchers believe that this scam has already made its way into nearly 50,000 inboxes.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased