JOURNAL ARTICLE
Exploiting the post‐attendee URL feature in Zoom webinar to distribute malware.
Published In: Journal of Forensic Sciences, 2023, v. 68, n. 2. P. 425 1 of 3
Database: Academic Search Ultimate 2 of 3
Authored By: Cauley, Austin; McCoy, Mark 3 of 3
Abstract
The post‐attendee Uniform Resource Locator (URL) feature within the video conferencing application known as Zoom is often overlooked by digital forensic experts as a potential risk for malware transmission. However, with the ability to redirect webinar participants to any URL set by the host for the webinar, the post‐attendee URL can be abused by bad actors to expose webinar participants to malicious websites or, in the worst‐case scenario, force participants to download a file through the use of a direct download link URL. This study aims to showcase how this exploit can be replicated by creating an experimental environment involving four Windows 10 desktops running Zoom version 5.7.5 and creating a webinar with four user accounts acting as webinar participants and setting the post‐attendee URL value to the URL of a website that contained a keylogger. In another trial, the same experimental environment was utilized, with the only difference being the post‐attendee URL that was set to redirect webinar participants to a download link for a.jpg file. In both instances, every user account that joined the webinar via clicking on the invitation link that was emailed to each user account after registering for the webinar was redirected to the post‐attendee URL regardless of their user account role. These results not only prove that the post‐attendee URL can be exploited, but also provide insight as to how this type of attack can be prevented. [ABSTRACT FROM AUTHOR]
Additional Information
- Source:Journal of Forensic Sciences. 2023/03, Vol. 68, Issue 2, p425
- Document Type:Article
- Subject Area:Computer Science
- Publication Date:2023
- ISSN:0022-1198
- DOI:10.1111/1556-4029.15185
- Accession Number:162203357
- Copyright Statement:Copyright of Journal of Forensic Sciences is the property of Wiley-Blackwell and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)
Looking to go deeper into this topic? Look for more articles on EBSCOhost.