{"id":7632,"date":"2020-07-14T04:33:32","date_gmt":"2020-07-14T11:33:32","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?p=7632"},"modified":"2023-07-10T14:29:39","modified_gmt":"2023-07-10T21:29:39","slug":"how-safe-are-online-conference-cyber-security","status":"publish","type":"post","link":"https:\/\/webdev.securin.xyz\/articles\/how-safe-are-online-conference-cyber-security\/","title":{"rendered":"How Safe are Online Conferences?"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"7632\" class=\"elementor elementor-7632\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-732a0a6f elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"732a0a6f\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-2f42c0b1\" data-id=\"2f42c0b1\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-49cf82e6 elementor-widget elementor-widget-text-editor\" data-id=\"49cf82e6\" data-element_type=\"widget\" data-settings=\"{&quot;ekit_we_effect_on&quot;:&quot;none&quot;}\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<blockquote><p dir=\"ltr\"><span style=\"font-size: 22px;\"><strong>The usage of online conferencing applications increased exponentially early this year. Over 100 million new participants started using Zoom (despite its flaws) in March 2020. <\/strong><\/span><\/p><p>Google Meet which was a paid application for G-suite users was made free to cater to the increasing online conferencing needs. LogMeIn Inc. declared ten times increase in their usage since March, this year.<\/p><\/blockquote><p dir=\"ltr\">With the recent breaches in Zoom application and increasing instances of \u2018zoombombing\u2019 and data theft, a definitive study of popular online video conferencing tools was needed.\u00a0In our recent <a href=\"https:\/\/cybersecurityworks.com\/cyber-risk-series\/\" target=\"_blank\" rel=\"noopener\">white paper series<\/a>, we examined popular <a href=\"https:\/\/cybersecurityworks.com\/resources\/cyber-risk-series\/cyber-risk-in-online-conferences.html\" target=\"_blank\" rel=\"noopener\">online conferencing applications <\/a>(Zoom, Logmein, Cisco, Teamviewer, Adobe, Microsoft, Polycom, Lifesize, Pexip) and has thrown the spotlight on the vulnerabilities that exist in it.<\/p><h3 dir=\"ltr\"><strong>Key Findings<\/strong><\/h3><p dir=\"ltr\">The report provides an in-depth study of popular online conference applications and their inherent vulnerabilities.\u00a0<\/p><blockquote><ul style=\"list-style-type: square;\"><li>A total of 877 vulnerabilities<\/li><li><strong>38<\/strong>\u00a0CVEs are weaponized<\/li><li><strong>10<\/strong>\u00a0CVEs are associated with RCE<\/li><li><strong>7<\/strong>\u00a0CVEs have Privilege Execution<\/li><\/ul><\/blockquote><h3><strong>Vulnerabilities in Online Conferencing Applications<\/strong><\/h3><ul><li dir=\"ltr\"><p dir=\"ltr\">The research team of Securin examined over <span style=\"color: #b22222;\"><strong>877<\/strong> <\/span>vulnerabilities that have been identified in the past decade (2010 \u2013 2020) out of which <strong><span style=\"color: #b22222;\">38<\/span><\/strong> vulnerabilities have been weaponized and can be executed remotely. Out of the weaponized vulnerabilities, over <span style=\"color: #b22222;\"><strong>10<\/strong> <\/span>are associated with RCE (Remote Code Execution) and <span style=\"color: #b22222;\"><strong>7<\/strong> <\/span>with PE (Privilege Execution).<\/p><\/li><\/ul><p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 409px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/conf1.png\" alt=\"\" \/><\/p><ul><li dir=\"ltr\"><p dir=\"ltr\">Out of the total vulnerabilities that exist in these applications, <span style=\"color: #b22222;\"><strong>220<\/strong> <\/span>are critical, while <span style=\"color: #b22222;\"><strong>55 <\/strong><\/span>are high and <span style=\"color: #b22222;\"><strong>521<\/strong> <\/span>in the medium level of priority, respectively.\u00a0<\/p><\/li><\/ul><p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 529px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/conf2.png\" alt=\"\" \/><\/p><h3 dir=\"ltr\"><strong>Vendor Vulnerability Count\u00a0<\/strong><\/h3><ul><li dir=\"ltr\"><p dir=\"ltr\">Among the vendor who came under the lens, we find that Cisco has over <span style=\"color: #b22222;\"><strong>189<\/strong> <\/span>critical vulnerabilities.\u00a0<\/p><\/li><li dir=\"ltr\"><p dir=\"ltr\">Cisco leads the way with <span style=\"color: #b22222;\"><strong>418<\/strong> <\/span>vulnerabilities in total followed by Huawei with <span style=\"color: #b22222;\"><strong>325<\/strong> <\/span>vulnerabilities. Among the count of weaponized vulnerabilities, Polycom is high with over <span style=\"color: #b22222;\"><strong>13<\/strong> <\/span>vulnerabilities followed by Microsoft with <span style=\"color: #b22222;\"><strong>9<\/strong> <\/span>vulnerabilities. Worryingly, <span style=\"color: #b22222;\"><strong>7<\/strong><\/span> vulnerabilities in Polycom are associated with RCE.<\/p><\/li><\/ul><p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 585px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/conf3.png\" alt=\"\" \/><\/p><p dir=\"ltr\">In terms of weaponization trend, over <span style=\"color: #b22222;\"><strong>391<\/strong> <\/span>vulnerabilities were discovered in 2017. In general, the rate of weaponization of vulnerabilities has been high since 2015 and peaked during 2016.\u00a0<\/p><p dir=\"ltr\"><img decoding=\"async\" style=\"width: 600px; height: 618px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/conf4.png\" alt=\"\" \/><\/p><p dir=\"ltr\">The most alarming statistics of this report was that critical vulnerabilities in online conference tools are not being detected by popular scanners. \u00a0<\/p><p style=\"text-align: center;\"><span style=\"font-size: 18px;\"><strong>Count of vulnerabilities missed by Scanners<\/strong><\/span><\/p><table dir=\"ltr\" style=\"width: 500px;\" border=\"1\" cellspacing=\"1\" cellpadding=\"1\" align=\"center\"><colgroup> <col \/> <col \/> <col \/> <col \/> <\/colgroup><thead><tr><th scope=\"col\">\u00a0<\/th><th scope=\"col\"><p dir=\"ltr\">Nessus<\/p><\/th><th scope=\"col\"><p dir=\"ltr\">Nexpose<\/p><\/th><th scope=\"col\"><p dir=\"ltr\">Qualys<\/p><\/th><\/tr><\/thead><tbody><tr><td><p dir=\"ltr\"><strong>Cisco<\/strong><\/p><\/td><td><p dir=\"ltr\">2<\/p><\/td><td><p dir=\"ltr\">3<\/p><\/td><td><p dir=\"ltr\">0<\/p><\/td><\/tr><tr><td><p dir=\"ltr\"><strong>Lifesize<\/strong><\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><\/tr><tr><td><p dir=\"ltr\"><strong>Microsoft<\/strong><\/p><\/td><td><p dir=\"ltr\">2<\/p><\/td><td><p dir=\"ltr\">6<\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><\/tr><tr><td><p dir=\"ltr\"><strong>TeamViewer<\/strong><\/p><\/td><td><p dir=\"ltr\">0<\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><\/tr><tr><td><p dir=\"ltr\"><strong>Polycom<\/strong><\/p><\/td><td><p dir=\"ltr\">4<\/p><\/td><td><p dir=\"ltr\">4<\/p><\/td><td><p dir=\"ltr\">4<\/p><\/td><\/tr><tr><td><p dir=\"ltr\"><strong>Zoom<\/strong><\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><td><p dir=\"ltr\">1<\/p><\/td><\/tr><tr><td><p dir=\"ltr\"><strong>Total<\/strong><\/p><\/td><td><p dir=\"ltr\"><strong>10<\/strong><\/p><\/td><td><p dir=\"ltr\"><strong>16<\/strong><\/p><\/td><td><p dir=\"ltr\"><strong>8<\/strong><\/p><\/td><\/tr><\/tbody><\/table><p>\u00a0<\/p><blockquote><ul><li dir=\"ltr\"><p dir=\"ltr\"><strong><span style=\"font-size: 22px;\"><a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2015-4683\">CVE-2015-4683<\/a> in Polycom allows attackers to gain sensitive information and gain privileges over HTTP requests.\u00a0<\/span><\/strong><\/p><\/li><li dir=\"ltr\"><p dir=\"ltr\"><strong><span style=\"font-size: 22px;\">Zoom\u2019s <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2017-15049?cpeVersion=2.2\">CVE-2017-15049<\/a> and Lifesize\u2019s <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2011-2763\">CVE-2011-2763<\/a> allows remote attackers to execute arbitrary code.\u00a0<\/span><\/strong><\/p><\/li><li dir=\"ltr\"><p dir=\"ltr\"><strong><span style=\"font-size: 22px;\">Microsoft\u2019s <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2010-3136\">CVE-2010-3136<\/a> allows local users and remote attackers to execute arbitrary code and to mount DLL hijacking attacks via a Trojan horse.\u00a0<\/span><\/strong><\/p><\/li><li dir=\"ltr\"><p dir=\"ltr\"><strong><span style=\"font-size: 22px;\">Polycom\u2019s <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2015-8300\">CVE-2015-8300<\/a> allows local users to gain privilege, <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2012-6611\">CVE-2012-6611<\/a> allows users to gain access without an administrative password while <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2015-4681\">CVE-2015-4681<\/a> has a webapp exploit associated with it.\u00a0<\/span><\/strong><\/p><\/li><\/ul><\/blockquote><p dir=\"ltr\">Online conference tools for all its faults is essential to conduct business and to have a semblance of normal life today. Schools, colleges, offices, industries are all dependent on these tools for the foreseeable future. Though the number of weaponized vulnerabilities is less, they have nonetheless helped many threat actors to penetrate and listen to meetings where sensitive information is being discussed or to disrupt conferences with malicious intent.\u00a0<\/p><blockquote><p dir=\"ltr\"><span style=\"font-size: 22px;\"><strong>Until these vulnerabilities are proactively fixed, you will need to exercise the utmost caution while discussing sensitive information in online meetings.<\/strong><\/span><\/p><\/blockquote><h2 dir=\"ltr\" style=\"text-align: center;\"><span style=\"display: inline !important; float: none; background-color: #ffffff; color: #333333; font-family: sans-serif,Arial,Verdana,;\">Download the whitepaper <strong><a href=\"https:\/\/cybersecurityworks.com\/resources\/cyber-risk-series\/cyber-risk-in-online-conferences.html\">Cyber Risk in Online Conference<\/a><\/strong>.<\/span><\/h2><h2 dir=\"ltr\" style=\"text-align: center;\"><span style=\"display: inline !important; float: none; background-color: #ffffff; color: #333333; font-family: sans-serif,Arial,Verdana,;\"><a href=\"https:\/\/cybersecurityworks.com\/resources\/cyber-risk-series\/cyber-risk-in-online-conferences.html\" target=\"_blank\" rel=\"noopener\"><img decoding=\"async\" style=\"width: 500px; height: 571px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/crs-online-banner.png\" alt=\"\" \/><\/a><\/span><\/h2><p dir=\"ltr\">\u00a0<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>With the recent breaches in Zoom application and increasing instances of \u2018zoombombing\u2019 and data theft, a definitive study of popular online video conferencing tools was needed.\u00a0Take a read.<\/p>\n","protected":false},"author":1,"featured_media":7633,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","footnotes":""},"categories":[80,109],"tags":[220,305,304,306,141,139,140,303],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7632"}],"collection":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/comments?post=7632"}],"version-history":[{"count":10,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7632\/revisions"}],"predecessor-version":[{"id":18751,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7632\/revisions\/18751"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media\/7633"}],"wp:attachment":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media?parent=7632"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/categories?post=7632"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/tags?post=7632"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}