Fake Zoom meeting silently installs surveillance software, says Malwarebytes
Summary
A new scam involves fake Zoom meeting invitations that, upon clicking, lead to a convincing imitation of a Zoom video call and silently install Teramind surveillance software on Windows computers. This software allows threat actors to log keystrokes, take screenshots, record website visits and application usage, capture clipboard contents, and track email and file activity.
IFF Assessment
The article describes a new social engineering attack using fake Zoom meetings to install surveillance software, which is detrimental to defenders.
Defender Context
Defenders should prioritize employee security awareness training to recognize and avoid phishing emails and fake meeting invitations. Employees should verify the legitimacy of meeting links and be wary of unexpected or urgent requests for action, especially those received outside of regular business hours. Monitoring for unusual software installations and network activity can also help detect and mitigate such attacks.