As if it can not be any worse for the US meeting company, researchers found that over 500 thousand of Zoom passwords are exposed in the dark web and in hacker forums for very cheap prices.
Some of them are even offered for free. This includes email addresses, passwords, URLs and host keys.
These credentials are gathered through credential stuffing attacks where threat actors attempt to login to Zoom using accounts leaked in older data breaches. After that, the attacker could sell successfully compiled credentials to other hackers.
That being said, you must not only change your Zoom password but also create unique passwords for every website you visit frequently. Especially, the ones using the same password.
You can also check if your email address has been leaked in previous data breaches using Have I Been Pwned.