Report: Hackers can steal Windows credentials via links in Zoom chat

1 April 2020

An unpatched vulnerability within Zoom allows an attacker to drop a malicious link into a chat window and use it to steal a Windows password, according to reports. A hacker could use an attack called a UNC path injection to expose credentials, according to an attack posted on Twitter and subsequently followed up with an additional video. According to The Hacker News, that’s because Windows exposes a user’s login name and password to a remote server when attempting to connect to it and download a file. HackerFantastic / Twitter All an attacker needs to do is to send a link to another user and convince them to click it, for the attack to commence.

Read full article on PCWorld

Date:

1 April 2020

Categorie(s):

NEWS

Tag(s):

Credentials, Cyber Threats, Hacking, Login, OS

School Employee Allegedly Framed a Principal With Racist Deepfake Rant27 April 2024
Russia Vetoed a UN Resolution to Ban Space Nukes27 April 2024
Cybersecurity firm Darktrace sold to Thoma Bravo for $5.3 billion27 April 2024
Bogus npm Packages Used to Trick Software Developers into Installing Malware27 April 2024
7-Year-Old 0-Day in Microsoft Office Exploited to Drop Cobalt Strike27 April 2024