Six malicious websites have been discovered which claim to offer downloads of Zoom, but contain nothing but the Vidar stealer malware.

The popularity of Zoom – a video meeting application – has exploded in the post-Covid landscape we find ourselves living in. No longer do people need to travel for face-to-face meetings, they can now be conveniently arranged and carried out over video. Accordingly, the demand for Zoom is huge, with around 485 million downloads completed since 2020. Due to this popularity, a gang of cybercriminals have decided to use Zoom as the bait for downloading the Vidar stealer.

As your employees are likely to consider a Zoom install safe, it’s important that we delve a little deeper and demonstrate why it may be far from safe.

Beware of Fake Zoom Sites

Vidar has been an active threat for some time now, but this latest attack is a new campaign and carries a number of unique threats. The six sites, discovered by Cyble Research, use a variety of URLs such as ‘zoom-download’ and ‘zoomus’ to appear legitimate. And, if you visit one of these sites, the visual aesthetics are remarkably similar to the official Zoom website, but this is where all similarities end.

Attempting to download the Zoom application from these malicious sites will, instead, redirect you to a GitHub file depository. From here, two files will be downloaded to your temporary folder:

  • ZOOMIN~1.exe: this is a genuine Zoom installer which is included to create a front that nothing untoward is taking place.
  • Decoder.exe: this is the malicious file which injects Vidar’s ability to steal into the Microsoft Build Engine. With this infection in place, Vidar is then able to contact remote Command and Control servers and begin transmitting data from the infected PC.

Like most stealer malware, Vidar concentrates on extracting confidential data such as login credentials, network details and whether any further vulnerabilities are present in the IT infrastructure. If vulnerabilities are detected, then it’s highly likely these will be logged and sold by criminal gangs. Protecting yourself against Vidar, therefore, is crucial.

How to Avoid Having Your Data Stolen

The mechanics of the Vidar Zoom threat are relatively common in the world of malware, so it’s likely you will run into a similar threat at some point. The best way to protect your PCs is by following these practices:

  • Always Verify Websites: Vidar’s latest attack relies on poor judgement from its intended victims, the main error coming when they assume that the malicious website is genuine. Many antivirus suites contain tools which allow search results to be rated as to their level of safety, and there is also the option for these tools to present warning screens before accessing sites deemed unsafe. If these are unavailable, and you need to download some software, reach out to your IT team instead.
  • Install Updates: Vidar is keen on logging any vulnerabilities contained within your PC, so it makes sense to limit these vulnerabilities. The best way to achieve this is by always installing updates as soon as they are available.
  • Segment Your Network: to protect your data, it makes sense to adopt network segmentation. This procedure divides your network into different segments and allows you to keep them separate. Therefore, if one segment is breached, the others will remain protected, and this allows you to limit the spread of the malware.

For more ways to secure and optimize your business technology, contact your local IT professionals.

Read More


Video conferencing has never been more important in business than it is today. But you need to make sure you work with the best video conferencing apps.

The threat of Covid-19 means that social distancing is being taken to unprecedented levels at present. Accordingly, more and more people are working from home. But this doesn’t mean that face-to-face contact needs to come to an end. After all, studies have shown that face-to-face meetings are substantially more effective than email and phone communication. And it’s important that we don’t lose the benefits of face-to-face communication with the right cameras and headsets.

Video conferencing allows us to maintain face-to-face communication while also obeying the strict guidelines imposed by social distancing. But what are the best video conferencing apps?

The Best Video Conferencing You Can Use

The market is saturated with video conferencing software, so it’s intimidating to weigh up the pros and cons of each one. Thankfully, we’ve decided to narrow your options down by exploring three of the best:

  • Zoom: Launched in 2013, Zoom has been designed with remote working in mind. Its main focus is on video conferencing, but the app also has instant chat and file sharing capabilities. Zoom is considered to be one of the market leaders in its niche and, during the Covid-19 pandemic, has been adopted by businesses, politicians and schools.
    • Pros
      • Screen sharing allows participants to view exactly what their colleagues are working on or require help with
      • Seamless video connections which are established quickly and securely
      • The user interface is intuitive and easy to use
    • Cons
      • Zoom’s free pricing plan limits meetings to just 40 minutes
      • Managing sub-accounts can only be carried out from a specific admin account which needs to be signed in and out of to action changes 
  • WebEx: Currently owned by Cisco, WebEx was founded in 1995 and brings plenty of expertise to the table. The software is big on web and video conferencing with call sharing, chat and multimedia sharing backing it up. WebEx offers a number of pricing plans that range from free up to $26.95 per month.
    • Pros
      • The interface is considered to be very user friendly and setting up a video conference is painless
      • WebEx can also boast whiteboard facilities which, in tandem with instant chat, makes collaboration easier than ever
      • All features are available at all price points
    • Cons
      • The number of licenses available with the lowest price plan is prohibitive to all but the smallest of organizations
  • GoToMeeting: Created by LogMeIn, GoToMeeting allows those with internet connections to benefit from a wide range of features such as video conferencing and collaboration. The main way in which it achieves this is by broadcasting the desktop view of a host PC. Price plans, which include HD video, start from $14 per month.
    • Pros
      • The processes involved in working with GoToMeeting are very simple, so there should be no technical challenges in using it
      • Users of different platforms can easily connect and communicate through the app
      • GoToMeeting can integrate with Outlook to deliver a powerful tool
    • Cons
      • The pricing plan does not include a free tier
      • Chat functions are purely limited to meetings which are in progress

For more ways to secure and optimize your business technology, contact your local IT professionals.

Read More