Unauthorized Access to Zoom Classes from Microsoft IPs
We have implemented a system where teachers receive an email with the Zoom class link 15 minutes before their scheduled class. Recently, many teachers have reported an issue where an unknown host joins their Zoom meeting, accepts participants, and then leaves the meeting shortly after without any further actions. After thorough investigation, including scanning our web logs and checking the IP addresses of the participants, we found that all the unauthorized access attempts were coming from Microsoft IP addresses (potentially Safe Links or Microsoft 365 services). This was corroborated by a similar issue reported on Reddit, where we identified matching IPs. Additionally, our SendGrid logs confirmed that the Zoom links were clicked twice within a minute for all the affected users, which aligns with the issue timeline. Request for Assistance: We are seeking guidance on how to prevent these unauthorized accesses. Specifically: Any assistance or recommendations would be greatly appreciated. Thank you for your support.
Show less