Threat actors already stole nearly 4,000 credentials before the holiday was even over, according to report. Bogus messages are being sent en masse and falsely tell recipients, You received a video conference invitation, according to researcher TheAnalyst. Attackers have already successfully pried credentials out of thousands of users, researcher says. The attack is ongoing and forecast to continue, expert said. The Turkey-Day themed email ploy leverages the juggernaut popularity of the Zoom Video Communications platform.
Source: https://threatpost.com/turkeybombing-zoom-abuse/161646/