{"id":9108,"date":"2022-01-03T21:10:13","date_gmt":"2022-01-03T21:10:13","guid":{"rendered":"https:\/\/www.securedyou.com\/?p=9108"},"modified":"2022-01-03T21:57:27","modified_gmt":"2022-01-03T21:57:27","slug":"how-to-hack-into-a-cisco-webex-meeting","status":"publish","type":"post","link":"https:\/\/www.securedyou.com\/how-to-hack-into-a-cisco-webex-meeting\/","title":{"rendered":"How to Hack into a Cisco Webex Meeting – Tricks and Exploits"},"content":{"rendered":"
<\/p>\n
Many of the organizations look for physical conference space for some face-to-face meetings in spite of using a video-based alternative like Hangouts.<\/p>\n
A Fun Fact: <\/strong>40% of employees waste 30 minutes each day to find a meeting room.<\/p>\n Today we will show you how you can hack into a Cisco Webex meeting<\/strong> and also sprinkle a few tricks on the way. This method will consist of a malicious file being sent to the organizer.<\/p>\n With this help of this, users can now:<\/p>\n It was founded by Subrah Iyar and Min Zhu in 1995. Dave Berman, who was a former president of Zoom, served as the president of worldwide sales and services here and helped it go public.<\/p>\n Eric Yuan, the founder of Zoom, was an engineer here before going on launching his multibillion-dollar company. It was without any doubt that the company would be both successful and influential as so many stars were working in this.<\/p>\n After 12 years, it was acquired by Cisco for around $3.2billion despite having only $380 million in sales.<\/p>\n This is a cloud-based suite of productivity tools that keeps all the teams connected like:<\/p>\n The suite is used to merge web conferencing platforms and spark team collaboration tool.<\/p>\n The suite allows for unified communications for any business from SMBs to enterprise-wide needs, along with that help in video meetings, file sharing and team messaging.<\/p>\n Meetings inside the company can be supported. Moreover, it also supports the deployment of other Hybrid Services.<\/p>\n It comes with a variety of stuff for its users, follow through to have a clear idea of how this can change your life.<\/p>\n You can now host webinars up to 3000 attendees with this. It supports the following essential features:<\/p>\n Like this, you can make most out of all sessions. Tools include:<\/p>\n Meetings are the core offering of the company and have been the top pick for many years. Comes with the following features:<\/p>\n This is the most robust remote assistance solution available in the market. It helps to:<\/p>\n WebEx allows users to provide support to any customer out there who has an internet connection regardless of the time zone through chat or their video conferencing service.<\/p>\n SEE ALSO:<\/strong> Download Cisco Packet Tracer (Latest For Windows 10)<\/a>.<\/p>\n You can now educate yourselves even from across the globe. If you are a presenter then with this you can:<\/p>\n The best part:<\/p>\n It carries all the features that you expect from an effective cloud-based solution. The software supports the following modes:<\/p>\n Users with this can also make use of a virtual receptionist who shall greet the callers.<\/p>\n Now, this may not be as popular as other collaboration apps like Trello or Basecamp but is still a great choice. With this:<\/p>\n Its carries an excellent user interface which allows you to join meetings in just a single click.<\/p>\n SEE ALSO:<\/strong> Download Nipper Tool for Auditing Complex Wired Network Topologies<\/a>.<\/p>\n The best part about this is that it is easy to use while on the go all thanks to mobile applications that can be found both of the Google Play Store and App Store. IOS version has around 50 thousand ratings and supports Siri.<\/p>\n The android version has more popularity with a rating that averages out of 4.4 stars versus 4.3 on iOS. It ensures that you would be never late for a meeting regardless of what your mobile device uses OS.<\/p>\n Cool features of their Webex Mod APK is:<\/p>\n Download Cisco Webex Mod APK<\/span><\/a><\/p>\n <\/p>\n It comes with a flaw that you can access the complete scheme of the company. Karl Fosaaen published research on federated services and skype for companies. An attacker vector located address books of other companies and sent messages from skype for business, including all the features like seeing when someone is online; similar has been discovered in WebEx.<\/p>\n It allows users to use the domain \u201ccompanyname.webex.com<\/em>\u201d to host public meeting rooms.<\/p>\n The best feature is enabling private meeting rooms. Every employee receives a personal meetings room so meetings can be organized through this. Employees can share links with the ones they communicate.<\/p>\n A commonly used link is \u201ccompanyname.webex.com\/meet\/userid\u201d. User ID is the user name or mail address of a domain. As you are known about the name of the scheme of personal rooms of the company you can enter into the personal office of anyone as user wants from any place around the globe.<\/p>\n As you go to the link in the personal meeting room, the following page is displayed:<\/p>\n <\/p>\n As details are entered that user desires, you are directly redirected to a secret room. If the person is not in the place currently, then the following is presented:<\/p>\n <\/p>\n As you click on notify, email is sent to the owner of the room. The mail is generated and sent from messenger[@]webex.com. This is just an example and can be anything from within the company.<\/p>\n <\/p>\n This will allow you to:<\/strong><\/p>\n How to know if a meeting is affected?<\/strong><\/p>\n What can you do to avoid this?<\/strong><\/p>\n A quick subdomain enumeration on WebEx.com has discovered many domains for organizations that use it in this way. A similar flaw is available in Skype<\/a>, where it allows you to find the IP address<\/a> of the person who is on the call.<\/p>\n SEE ALSO:<\/strong> Download Snort\u00a0 – Network IDS and IPS Protection Tool<\/a>.<\/p>\n <\/p>\n It has issued a critical patch to fix serious vulnerability CVE-2018-0112 in WebEx software that can be exploited by remote attackers to execute arbitrary code on target machines through weaponized flash files.<\/p>\n Both client and server version of WebEx business Suite or standard is affected by the vulnerability. It is recommended to update your software to fix the problem.<\/p>\n \u201cA vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx Meetings, and Cisco WebEx Server could allow an authenticated, remote attacker to execute arbitrary code on a targeted system.\u201d<\/em><\/p><\/blockquote>\n\n
What is Cisco Webex and how it all started<\/strong><\/h2>\n
Cisco Webex Features<\/b><\/h2>\n
\n
Online Webinars<\/strong><\/h3>\n
\n
\n
Video Conferencing with people<\/strong><\/h3>\n
\n
Providing Remote Support<\/strong><\/h3>\n
\n
Training Employees<\/strong><\/h3>\n
\n
\n
Calling in the Cloud<\/strong><\/h3>\n
\n
Work Collaboration<\/strong><\/h3>\n
\n
Cisco Webex on Android and iOS<\/strong><\/h2>\n
\n
How to Hack Cisco Webex Meetings for Fun with Tricks and Exploits<\/strong><\/h2>\n
\n
\n
\n
Hacking Webex using a Malicious Payload File<\/strong><\/h3>\n