Security News > 2020 > November > Zoom Snooping: How Body Language Can Spill Your Password
You've heard of Zoom Bombing, but have you heard of Zoom Snooping? Researchers contend they can extract keystroke data from participants in a video call simply by tracking shoulder movements.
"Being security/privacy researchers, and heavy users of such applications ourselves, we wondered what non-obvious private information one can infer by being on the other end of such call/conference videos." Jadliwala told Threatpost by email.
"One of the reasons our attack framework targets image frames containing upper body/shoulders of the user is because that is the only portion of the body that is typically visible in most video calls."
While the technology is still experimental and needs work, the sheer volume of work, school and social life being done on high-definition video calling platforms is driving cybersecurity researchers to take a hard look at their vulnerabilities.
In early Oct., Cisco's Webex, another popular, high-definition video conferencing platform issued patches for three "High-severity" flaws and 11 "Medium" severity ones for its conferencing system's video surveillance IP cameras and Identity Services Engine network admin software.