Security Tips: Protecting Your PC or Phone’s Camera from Unauthorized Access During Online Meetings
NOTE: Hello, this blog post has been written for the purpose of education and raising awareness about information security. It is essential to use authorized legal methods (White Box Test, Grey Box Test) as mentioned in this post. Our main FOCUS is on the SECURITY ADVICE section. Be sure to read that part.
Nowadays, online meetings are increasing and this situation creates security problems.
I wrote about phising attacks a scenario with fake online meeting links in this blog post. I also talked about some tips for our security in online meetings.
Tool Used By Cyber Attackers:
CamPhish : CamPhish is a social engineering tool in the running a PHP Local Server to take a screenshot from the camera in phone or PC.
Ngrok is a tunneling or port forwarding service. Cyber criminal can use ngrok or serveo.net for WAN attacks. Cyber criminal selects the ‘Online Meeting’ option for template. He selects ‘ngrok’ for the WAN tunnel. Ngrok starts a server that allows WAN to LAN connections. Finally, he waits for the targets click on the direct link.(Figure 1)
When the target clicks the ‘Allow’ option (shown in Figure 2), cyber criminal begins receiving images from the target’s camera (shown in Figure 2). For example, a phone’s browser could be used for this purpose.
Images are being received.(Figure 4)
As a result, cyber attacker receives images from target’s the camera.(Figure 5)
cyber attackers can prepare an environment for phising attack similar to best online meet applications . They increase the risk of phishing for the target.
cyber attackers can create phishing business email content using fake email sending services.
Meeting links often has got a subdomain and a complex, irregular URL structure, This situation makes it easier for phishing attacks to occur. The subdomain, complex, and irregular URL structure can reduce the reliability of the link.(Figure 6)
Security Tips :
1-If you have a online meeting date, don’t share it everywhere.
2-If there is a meeting link, we should be used the desktop version of the meeting software.
3-If you are going to meet a online meeting, before the meeting, you should be scheduled a face-to-face or phone conversation to confirm the details.
4-You shouldn’t open unknown meeting links that you receive in your email.
5-You should be used a virtual background application during online meetings..
6-For example, you can check the camera permissions in Google Chrome by going to “Site settings” under “Privacy and Security”.
7- If these is a company, the IT Security should be implemented an information security awareness traning or management to Vishing, Whaling, Untargeted, Pharming, SpearPhising attacks. The Security team should be taken measures CSRF and XSS vulnerabilities to prevent these attacks.
Stay Safe.
Resources
2-https://krisp.ai/blog/virtual-background-apps/
3-https://ungoti.com/blog/14-tips-video-conference-security/
