It has been reported that a team of security researchers found they could tap into Webex and Zoom video meetings because many weren’t protected with a code. Researchers programmed a bot to cycle through lists of valid meeting IDs and get access to active conference calls. The vulnerability works because many companies and users don’t protect their meetings with a password, either for convenience or they had not checked their default settings, coupled with a limited pool of meeting IDs. By targeting the platforms’ APIs, they were able to automate the process.
Experts Comments
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Jonathan Knudsen, Senior Security Strategist , provides expert commentary at @Information Security Buzz.
"Meeting recordings should be protected with similar vigilance. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-comments-a-flaw-in-webex-and-zoom-let-researchers-snoop-on-users-video-calls
Facebook Message
@Jonathan Knudsen, Senior Security Strategist , provides expert commentary at @Information Security Buzz.
"Meeting recordings should be protected with similar vigilance. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/expert-comments-a-flaw-in-webex-and-zoom-let-researchers-snoop-on-users-video-calls