Securing Your Remote Workforce – Detecting Teleconferencing Tools Attacks in the Work-From- Home (WFH) World – Part 2
The Securonix Threat Research team has recently been observing a number of new attacks/security issues reported involving different remote workforce teleconferencing applications (TA), including Zoom, Cisco Webex, and Microsoft Teams. Some examples of the attacks/exploits reported include Zoom UNC path exploits, Zoom and Webex phishing, new high-profile Zoom zero-day exploits, Cisco Webex remote code-execution (RCE) vulnerability, Microsoft Teams GIF subdomain/account takeover, and a number of other attacks/issues.
The Securonix Threat Research Team has been actively investigating and closely monitoring these cyberattacks/security issues to help organizations better protect themselves in light of the global shift to remote workforce/teleconferencing work. In this report is a summary of the key details with our recommendations, including details about the recommended log/data sources and priority use cases that you can use to improve your remote workforce TA monitoring, including Zoom, Webex, and others.