Malicious actors are now targeting users with fake Zoom meeting emails to steal their personal information and login credentials, consistent with email cybersecurity firm Abormal Security.
This particular phishing scheme uncovered by Abnormal Security weaponizes many people’s fear of losing their jobs thanks to the economic downturn during the coronavirus pandemic.
To date, quite 26 million people within the U.S. have filed for unemployment since the pandemic began
The email contains a Zoom meeting invitation link, which is really the hacker’s phishing site designed to mimic the design of Zoom’s login page.
Actually, clicking the meeting link forwards the target to a page hosted at the URL “zoom-emergency.myftp.org.”
“When the victim reads the e-mail they’re going to panic, click on the phishing link, and hurriedly plan to log into this fake meeting,” explains Abnormal Security’s report.
“Instead, their credentials are going to be stolen by the attacker.”
Zoom has experienced tremendous growth since the start of the worldwide coronavirus pandemic. With several countries instituting lockdowns, quarantines, and stay-at-home orders, many businesses have transitioned their employees to work-from-home arrangements.
Readers should take care when clicking links in an email that needs login credentials.
Always double-check the sender’s email address and therefore the attached link.
If you receive an email link purporting to be from Zoom or the other website for that matter, don’t click! Just type out the official URL for that website within the browser yourself.
Zoom may have fixed many of its own security issues, but it’ll never be resistant to hackers trying to trick the company’s users.