Bose Work Remote Promo
Bose Work Remote Mobile Promo
Take Our Survey on Your IoT/Collaboration Plans & You Could Win a 60" 4K UHD Display!
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

My TechDecisions

  • COVID-19 Update
  • Best of Tech Decisions
  • Topics
    • Video
    • Audio
    • Mobility
    • Unified Communications
    • IT Infrastructure
    • Network Security
    • Physical Security
    • Facility
    • Compliance
  • RFP Resources
  • Downloads
  • Podcasts
  • Subscribe
  • Project of the Week
  • About Us
    SEARCH
Network Security, News, Unified Communications

Study: Tiny Visual Cues Can Give Hackers Your Password On Video Calls

A hacking method uncovered by researchers relies on tiny visual cues and an algorithm to guess a user's password over a video call.

November 10, 2020 Zachary Comeau Leave a Comment

Video Call Password Hacking

Remote work has brought with it a host of cybersecurity challenges, exacerbated by the surge in use of popular videoconferencing platforms like Zoom, Microsoft Teams, Google Meet and others.

Those companies have been active in enhancing the security controls for those applications, but one new hacking method uncovered by researchers from the University of Texas and University of Oklahoma relies on tiny visual cues and an algorithm to guess a user’s password if they sign into an account while on a video call.

According to Forbes, citing the study, a hacker can used a methodology called keystroke inference which is essentially watching the shoulders and upper arms for clues as to what the user at the other end of the call is typing.

Although small and subtle movements, a hacker could take a pretty good guess at what a person’s password is, with the help of an algorithm.

These visual differences can reveal the direction in which someone is typing, moving from one key to another, ultimately revealing what was typed using an algorithm that cross-references them with dictionary word-profiles.

So, the attack would require someone to either be on the call you are making or to have hacked into it so as to be able to record the video. That video needs to be of suitably high resolution for the software to be able to calculate correctly when it is run through it.

Read Next: Cyber Security Tips from Pros: World Password Day Reminds Us We Need Them

The software used to guess passwords based on those miniscule visual cues correctly guessed a password 75% of the time if the password was included in the reference database of 1 million commonly used passwords.

However, stronger passwords like randomly generated passwords or truly unique phrases were harder to guess, as just 18.9% of total passwords were guessed correctly, and 74% of the passwords not in the reference database stood up against this hacking method.

As with any account or application, you should observe good cybersecurity practices when it comes to passwords. Here are some examples:

  • Change the default password
  • Don’t use the same password for every account
  • Change your password regularly
  • Enable multi-factor authentication

 

Tagged With: Cybersecurity, Google Meet, Microsoft Teams, Videoconferencing, Zoom

Related Content:

  • Google Vulnerability Researchers Donald Trump, and 15,000 Others, Just Got Hacked…
  • Zoom Hybrid Work Zoom Banks On Its Education Customers, Apps, Zoom…
  • Intelligent Assistant Regional Accent Alexa Amazon’s Alexa Conversations Makes Chatbots More Realistic
  • instagram Live Rooms Instagram’s New Feature Could Help Your Marketing Department

Free downloadable guide you may like:

  • Introducing the IT Pro MBA: Vetting Technology

    At some point in your career there is going to come a time when you are tasked with reviewing and vetting new tech to implement into your company. Sometimes the hardest part of the whole thing is just getting started. In this new series from My TechDecisions, the IT Pro MBA: Vetting Technology guide deep-dives […]

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Get the FREE Tech Decisions eNewsletter

Sign up Today!

Latest Downloads

Introducing the IT Pro MBA: Vetting Technology

At some point in your career there is going to come a time when you are tasked with reviewing and vetting new tech to implement into your company. ...

9 Technology Products to Help Combat COVID-19 Spread in the Workplace

As the Coronavirus continues on and leads us further into uncertainty, the question remains, “when do we return to the office?” For some the answer...

Top 9 Reasons Enterprise IT Leaders Are Moving Their Video Surveillance to the Eagle Eye Cloud

Working in IT has enough challenges without adding in the complications of surveillance video. Things like total cost of maintenance, how the VMA m...

View All Downloads

Would you like your latest project featured on TechDecisions as Project of the Week?

Apply Today!
Sharp Microsoft Collaboration HQ Logo

Learn More About the
Windows Collaboration Display

More from Our Sister Publications

Get the latest news about AV integrators and Security installers from our sister publications:

Commercial IntegratorSecurity Sales

Footer

TechDecisions

  • Home
  • Welcome to TechDecisions
  • Subscribe to the Newsletter
  • Contact Us
  • Media Solutions & Advertising
  • Comment Guidelines
  • RSS Feeds
  • Terms of Use
  • Privacy Policy
  • Twitter
  • Facebook
  • Linkedin

Free Technology Guides

FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets

View all Guides
TD Project of the Week

Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.

Enter Today!

© 2021 Emerald X, LLC. All rights reserved.