Tag: zoom

3 Attack Reports | 0 Vulnerabilities

Attack reports

Be Careful With Fake Zoom Client Downloads

A deceptive email containing a fake Zoom meeting invitation has been identified. Clicking the 'join' button leads to a website prompting users to install a purported Zoom client update. The downloaded executable, 'Session.ClientSetup.exe', is actually malware that installs an MSI package. This pack…
screenconnect
phishing
downloader
fake update
remote access tool
zoom
2025-06-05
Published: June 5, 2025
Downloadable IOCs: 2

VS Code Extension Impersonating Zoom Targets Google Chrome Cookies

A malicious Visual Studio Code extension masquerading as a Zoom application was discovered, designed to access and steal Google Chrome cookies. The extension, uploaded to the VS Code Marketplace on November 30 and updated on December 8, impersonates the Zoom Workspace tool to gain users' trust. It …
vs code
zoom
2025-01-21
cookies
Published: January 21, 2025
Downloadable IOCs: 3

A new playground: Malicious campaigns proliferate from VSCode to npm

This intelligence details the emergence of malicious campaigns spreading from VSCode to npm. Researchers observed an increasing amount of malicious activity in VSCode Marketplace, with threat actors using npm packages to inject malicious code into VSCode IDE. The campaign initially targeted the cry…
obfuscation
npm
downloader
crypto
software supply chain
2024-12-19
zoom
malicious extensions
vscode
Published: December 19, 2024
Downloadable IOCs: 2
Click here to see more Attack Reports