Cargando…
Zooming into the pandemic! A forensic analysis of the Zoom Application
The global pandemic of COVID-19 has turned the spotlight on video conferencing applications like never before. In this critical time, applications such as Zoom have experienced a surge in its user base jump over the 300 million daily mark (ZoomBlog, 2020). The increase in use has led malicious actor...
| Autores principales: | , , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Elsevier Ltd.
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9767471/ https://www.ncbi.nlm.nih.gov/pubmed/37522032 http://dx.doi.org/10.1016/j.fsidi.2021.301107 |
| _version_ | 1784853973087289344 |
|---|---|
| author | Mahr, Andrew Cichon, Meghan Mateo, Sophia Grajeda, Cinthya Baggili, Ibrahim |
| author_facet | Mahr, Andrew Cichon, Meghan Mateo, Sophia Grajeda, Cinthya Baggili, Ibrahim |
| author_sort | Mahr, Andrew |
| collection | PubMed |
| description | The global pandemic of COVID-19 has turned the spotlight on video conferencing applications like never before. In this critical time, applications such as Zoom have experienced a surge in its user base jump over the 300 million daily mark (ZoomBlog, 2020). The increase in use has led malicious actors to exploit the application, and in many cases perform Zoom Bombings. Therefore forensically examining Zoom is inevitable. Our work details the primary disk, network, and memory forensic analysis of the Zoom video conferencing application. Results demonstrate it is possible to find users' critical information in plain text and/or encrypted/encoded, such as chat messages, names, email addresses, passwords, and much more through network captures, forensic imaging of digital devices, and memory forensics. Furthermore we elaborate on interesting anti-forensics techniques employed by the Zoom application when contacts are deleted from the Zoom application's contact list. |
| format | Online Article Text |
| id | pubmed-9767471 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | Elsevier Ltd. |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-97674712022-12-21 Zooming into the pandemic! A forensic analysis of the Zoom Application Mahr, Andrew Cichon, Meghan Mateo, Sophia Grajeda, Cinthya Baggili, Ibrahim Forensic Science International: Digital Investigation Article The global pandemic of COVID-19 has turned the spotlight on video conferencing applications like never before. In this critical time, applications such as Zoom have experienced a surge in its user base jump over the 300 million daily mark (ZoomBlog, 2020). The increase in use has led malicious actors to exploit the application, and in many cases perform Zoom Bombings. Therefore forensically examining Zoom is inevitable. Our work details the primary disk, network, and memory forensic analysis of the Zoom video conferencing application. Results demonstrate it is possible to find users' critical information in plain text and/or encrypted/encoded, such as chat messages, names, email addresses, passwords, and much more through network captures, forensic imaging of digital devices, and memory forensics. Furthermore we elaborate on interesting anti-forensics techniques employed by the Zoom application when contacts are deleted from the Zoom application's contact list. Elsevier Ltd. 2021-03 2021-01-23 /pmc/articles/PMC9767471/ /pubmed/37522032 http://dx.doi.org/10.1016/j.fsidi.2021.301107 Text en © 2021 Elsevier Ltd. All rights reserved. Since January 2020 Elsevier has created a COVID-19 resource centre with free information in English and Mandarin on the novel coronavirus COVID-19. The COVID-19 resource centre is hosted on Elsevier Connect, the company's public news and information website. Elsevier hereby grants permission to make all its COVID-19-related research that is available on the COVID-19 resource centre - including this research content - immediately available in PubMed Central and other publicly funded repositories, such as the WHO COVID database with rights for unrestricted research re-use and analyses in any form or by any means with acknowledgement of the original source. These permissions are granted for free by Elsevier for as long as the COVID-19 resource centre remains active. |
| spellingShingle | Article Mahr, Andrew Cichon, Meghan Mateo, Sophia Grajeda, Cinthya Baggili, Ibrahim Zooming into the pandemic! A forensic analysis of the Zoom Application |
| title | Zooming into the pandemic! A forensic analysis of the Zoom Application |
| title_full | Zooming into the pandemic! A forensic analysis of the Zoom Application |
| title_fullStr | Zooming into the pandemic! A forensic analysis of the Zoom Application |
| title_full_unstemmed | Zooming into the pandemic! A forensic analysis of the Zoom Application |
| title_short | Zooming into the pandemic! A forensic analysis of the Zoom Application |
| title_sort | zooming into the pandemic! a forensic analysis of the zoom application |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9767471/ https://www.ncbi.nlm.nih.gov/pubmed/37522032 http://dx.doi.org/10.1016/j.fsidi.2021.301107 |
| work_keys_str_mv | AT mahrandrew zoomingintothepandemicaforensicanalysisofthezoomapplication AT cichonmeghan zoomingintothepandemicaforensicanalysisofthezoomapplication AT mateosophia zoomingintothepandemicaforensicanalysisofthezoomapplication AT grajedacinthya zoomingintothepandemicaforensicanalysisofthezoomapplication AT baggiliibrahim zoomingintothepandemicaforensicanalysisofthezoomapplication |