Zoom, for those who don’t know, is an online meeting platform.  It is very easy to use and even has a free version you can use.  It has become immensely popular in the current crisis as a way for virtual meetings to happen and let people see each other with webcams as well as share screens.  It also has a fairly major security flaw that has just been discovered.

Beware Links in Zoom

Basically, there is a bug in zoom that will allow someone to steal your Windows password if you click on a specific type of link using the Zoom chat feature. The link would look different than a normal web link.  A normal we link looks like https://sawyersolutionsllc.com.  The trouble type of link looks like \\attacker.example.com\C$.  The key thing to note here is the use of back slashes – “\”, instead of forward slashes – “/”.

Be Paranoid

Now I am sure that Zoom will have this security flaw patched quickly, but this should serve as a reminder to be cautious.   Be especially cautious when using remote tools like this as each tool increases the ability for attackers to get at you.  The bad guys are out there and they are trying to get you.  This is especially true in today’s crisis mode where people are using more tools to enable remote work. 

Sawyer Solutions is an information technology company with years of expertise in I.T., compliance and cybersecurity services for businesses. We are here to help you and your business transition to a remote work force and keep you, your employees and your client’s data protected and secure.  Contact us if you have any questions about your current remote location security needs.

If you find this article helpful, please share.
by:
April 6, 2020

Thank you so much!! I use it daily now, and am grateful for the heads up!

April 6, 2020

Good info.

April 18, 2020

Good catch good to know and watch out for.

Leave a Reply

Your email address will not be published. Required fields are marked *