{"id":54740,"date":"2023-12-01T14:20:46","date_gmt":"2023-12-01T14:20:46","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/35255\/Zoom-Flaw-Enabled-Hijacking-Of-Accounts-With-Access-To-Meetings-Team-Chat.html"},"modified":"2023-12-01T14:20:46","modified_gmt":"2023-12-01T14:20:46","slug":"zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/","title":{"rendered":"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/11\/1130_zoom.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>A Zoom flaw that enabled the hijacking of service accounts with access to potentially confidential information was disclosed by bug hunters this week.<\/p>\n<p>The vulnerability in the Zoom Rooms feature mostly affected Zoom tenants using email addresses from large providers like Outlook and Gmail. The flaw was first discovered at an ethical hacking and bug bounty event in June and patched by Zoom prior to its disclosure, with no known use in the wild.<\/p>\n<p>AppOmni Offensive Security Engineer Ciar\u00e1n Cotter first wrote about the details of the bug <a rel=\"noreferrer noopener\" href=\"https:\/\/appomni.com\/blog_post\/claiming-zoom-rooms-service-accounts-to-gain-access-to-tenants\/\" target=\"_blank\">in a blog post<\/a> Tuesday. The post explains how he and his colleagues used the vulnerability to gain access to Zoom Rooms service accounts at the <a rel=\"noreferrer noopener\" href=\"https:\/\/blog.zoom.us\/zoom-hackerone-h1-4420-event-2023\/\" target=\"_blank\">HackerOne H1-4420 event<\/a> on June 22. Zoom was a sponsor of the event and awarded bug bounty payouts to participating white-hat hackers.<\/p>\n<p>\u201cThis vulnerability had the potential to allow an attacker to claim a Zoom Room\u2019s service account and gain access to the victim\u2019s organization\u2019s tenant,\u201d Cotter wrote. \u201cAs a service account, an attacker would have invisible access to confidential information in Team Chat, Whiteboards, and other Zoom applications.\u201d<\/p>\n<h2>How could Zoom accounts be hijacked?<\/h2>\n<p>Zoom Rooms is a feature that allows video conferencing between teams in separate physical locations, such as when a company has offices in multiple cities or wants to bring in-person and remote workers into the same meeting.<\/p>\n<p>As opposed to an individual\u2019s Zoom account, the Zoom Room service account represents everyone at a particular location, such as a conference room, and \u201cattends\u201d Zoom meetings through one device at that location.<\/p>\n<p>When a Zoom Room service account is first created, it is automatically assigned an email address generated by Zoom following the format \u201crooms_&lt;account ID&gt;@&lt;domain name&gt;.\u201d The account ID is the user ID value of the service account, and the email domain name is always the same as that of the user with the Owner role in the organization\u2019s Zoom tenant. For example, if the Owner\u2019s email address is &#8220;<a href=\"https:\/\/www.scmagazine.com\/cdn-cgi\/l\/email-protection\" class=\"__cf_email__\" data-cfemail=\"8ce3fbe2e9feccffefe1edebedf6e5e2e9a2efe3e1\">[email&nbsp;protected]<\/a>&#8221; and the account ID is 12345, the Zoom Room service email would be \u201c<a href=\"https:\/\/www.scmagazine.com\/cdn-cgi\/l\/email-protection\" class=\"__cf_email__\" data-cfemail=\"22504d4d4f517d13101116176251414f434543584b4c470c414d4f\">[email&nbsp;protected]<\/a>.\u201d &nbsp;<\/p>\n<p>The AppOmni team found that if a hacker could create an email account with an identical name to the email address generated for the Zoom Room, they could use this email address to sign up for Zoom, activate the account and then use it to log in to the victim\u2019s Zoom tenant. Cotter explained how this is possible <a href=\"https:\/\/twitter.com\/monkehack\/status\/1729798377716510765\" target=\"_blank\" rel=\"noreferrer noopener\">in a comment on X<\/a> (formerly known as Twitter).<\/p>\n<p>\u201cRooms operate as service accounts, they were never activated until we activated them. There was something weird in the backend that let the Room serve its purpose as a service account without activation, allowing us to sign up with it,\u201d Cotter wrote under his online handle monkehack.<\/p>\n<h2>Zoom hack could potentially leak confidential info<\/h2>\n<p>The main targets of exploitation of this bug would likely have been organizations that use free, widely available email providers like Outlook or Gmail. For example, if the Rooms email address is <a href=\"https:\/\/www.scmagazine.com\/cdn-cgi\/l\/email-protection\" class=\"__cf_email__\" data-cfemail=\"01736e6e6c725e303332353441666c60686d2f626e6c\">[email&nbsp;protected]<\/a>, anyone could easily create and access a Gmail account with this same name for free. Finding out the service email address of a Zoom Room to exploit was relatively easy; the address is available to anyone who attends a meeting with a Room or messages the Room on Team Chat.<\/p>\n<p>Once the account hijacker gained access to the Zoom tenant, they would be able to use it to join or host meetings, view the organization\u2019s contacts, and access the organization\u2019s Whiteboards and Team Chat channels. With the ability to potentially sit in on confidential meetings, view collaborative company Whiteboards and read private conversations between employees, valuable information about business strategies, financial information and more could be leaked. AppOmni also discovered that the Room account could not be removed from any Team Chat channels by any administrator or the Owner.<\/p>\n<p>\u201cFollowing several conversations with the Zoom team, the vulnerability was validated and promptly remediated,\u201d according to Cotter. \u201cTo mitigate this issue, Zoom removed the ability to activate Zoom Room accounts.\u201d<\/p>\n<p>A Zoom spokesperson told SC Media, &#8220;We have resolved this security issue. As always, we recommend users keep up to date with the latest version of Zoom to take advantage of Zoom&#8217;s newest features and security updates.&#8221;<\/p>\n<h2>$5,000 bug bounty claimed by ethical hackers<\/h2>\n<p>The white-hat hackers that discovered the bug received a $5,000 payout from Zoom\u2019s <a rel=\"noreferrer noopener\" href=\"https:\/\/www.zoom.com\/en\/trust\/vulnerability-disclosure\/\" target=\"_blank\">bug bounty program<\/a>, according to Cotter, who <a rel=\"noreferrer noopener\" href=\"https:\/\/twitter.com\/monkehack\/status\/1729560830566404343\" target=\"_blank\">tweeted<\/a> that Zoom rated the bug severity as \u201cHigh\u201d under its own <a rel=\"noreferrer noopener\" href=\"https:\/\/viss.zoom.com\/\" target=\"_blank\">Vulnerability Impact Scoring System (VISS).<\/a> In addition to AppOmni, Ethical InfoSec Services (EIS) CEO <a rel=\"noreferrer noopener\" href=\"https:\/\/twitter.com\/Jayesh25_\" target=\"_blank\">Jayesh Madnani<\/a> also contributed to the discovery of the bug.<\/p>\n<p>Zoom has implemented a range of measures to improve its products\u2019 security in the years since the COVID-19 lockdown that rocketed the company into the public spotlight. Back then, Zoom was heavily criticized due to a number of zero-day vulnerabilities and privacy problems plaguing the influx of new users.<\/p>\n<p>As part of its efforts to boost security, it <a rel=\"noreferrer noopener\" href=\"https:\/\/blog.zoom.us\/90-day-security-plan-progress-report-june-24\/\" target=\"_blank\">beefed up its bug bounty program<\/a> and vulnerability disclosure efforts in 2020, working with HackerOne and Bugcrowd to help discover flaws. Zoom awarded $3.9 million in bounties in fiscal year 2023, and more than $7 million since the program began.<\/p>\n<p>READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/35255\/Zoom-Flaw-Enabled-Hijacking-Of-Accounts-With-Access-To-Meetings-Team-Chat.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":54741,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[277],"tags":[2353],"class_list":["post-54740","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity-blogs","tag-headlinehackerprivacyflaw"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-12-01T14:20:46+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/11\/1130_zoom.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat\",\"datePublished\":\"2023-12-01T14:20:46+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/\"},\"wordCount\":896,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg\",\"keywords\":[\"headline,hacker,privacy,flaw\"],\"articleSection\":[\"CyberSecurity Blogs\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/\",\"name\":\"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg\",\"datePublished\":\"2023-12-01T14:20:46+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg\",\"width\":1280,\"height\":800},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,hacker,privacy,flaw\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinehackerprivacyflaw\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/","og_locale":"en_US","og_type":"article","og_title":"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-12-01T14:20:46+00:00","og_image":[{"url":"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/11\/1130_zoom.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat","datePublished":"2023-12-01T14:20:46+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/"},"wordCount":896,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/12\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg","keywords":["headline,hacker,privacy,flaw"],"articleSection":["CyberSecurity Blogs"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/","url":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/","name":"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/12\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg","datePublished":"2023-12-01T14:20:46+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/12\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/12\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat.jpg","width":1280,"height":800},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/zoom-flaw-enabled-hijacking-of-accounts-with-access-to-meetings-team-chat\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,hacker,privacy,flaw","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinehackerprivacyflaw\/"},{"@type":"ListItem","position":3,"name":"Zoom Flaw Enabled Hijacking Of Accounts With Access To Meetings, Team Chat"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/54740","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=54740"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/54740\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/54741"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=54740"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=54740"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=54740"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}