Our members frequently report new and evolving scams. We recently received a report about a highly convincing Zoom link scam that targeted a Listing Agent.
Here’s how the scam worked in this instance: A person who claimed to be out-of-town (or in another state) and was interested in a property requested a Zoom meeting with the Listing Agent. The prospective buyer then sent the agent the Zoom link to join the call.
Why Malicious Zoom Links Are Dangerous
Scammers are actively using fraudulent or malicious Zoom links to spread malware, steal your login credentials, and hijack accounts.
Bypassing Filters: Some criminals use trusted-looking domains, like
docs.zoom.us, to host malicious files or redirect you to credential-harvesting pages. Because the initial link is legitimate, these emails can unfortunately bypass many common email security filters.The Goal: The scammer wants you to click their link, which can install malicious software or take you to a fake login page to steal your username and password.
4 Ways to Spot a Malicious Zoom Link
Protect yourself and your business by following these simple, but crucial, steps before clicking on any meeting link:
✅ Check the Sender’s Email Address
A genuine Zoom meeting invite will not come from a generic address like “Zoom Video Communications.” It will come from the personal or business email address of the person who is actually hosting the meeting. If you don’t recognize the sender, be highly suspicious.
✅ Hover Over the Link
Before you click, move your mouse cursor over the link and hold it there (on a mobile device, you can usually tap and hold).
A legitimate Zoom link should always direct you to a zoom.us or zoom.com domain.
Be wary of shortened links or those with misspellings like zooom.us or zom.us.
✅ Look for Red Flags in the Language
Phishing emails often create a false sense of urgency with subject lines like “Missed Zoom Call” or “Urgent Meeting Request.” They may also use overly generic and impersonal language like “Dear Customer” instead of your actual name.