Looking for:
Zoom security issues: What's gone wrong and what's been fixed | Tom's GuideIs it dangerous to download zoom -
A lot happened in , and almost no story rode the rollercoaster like the story of Zoom's security issues and updates. Read the most current information on this topic: Update - Zoom: Is it Safe?
Zoom is a cloud-based video conferencing platform that allows users to perform video calls, chat, telecommute, participate in distance education, and virtually interact with other Zoom members. Zoom has become as essential tool for many individuals and organizations during the COVID crisis, seeing a significant increase in usage the last few months. As most people are working from home, businesses and individuals are seeking a communications service that is efficient and easy to use.
Zoom was hosting 10 million users before the COVID pandemic, now the number has increased to million meeting participants. This increase in usage has also placed Zoom under the microscope, revealing numerous security and privacy issues. The utilization of end-to-end encryption turned out to not be the case, Zoom admitted. The encryption used to secure Zoom call data was actually transport encryption, meaning the encryption works the same way your web browser encrypts data between the web server hosting the website and your computer.
To pile onto the E2E encryption issues with Zoom, Citizen Lab identified several Zoom servers in China issuing encryption keys to Zoom users in other countries. Without true E2E encryption, those Zoom servers can decrypt Zoom meetings.
The Chinese government could compel the operators of those servers in China to hand over the data, which is bad news for anyone discussing trade or government secrets being routed through those Zoom servers. One version of the Zoom installer — not an official release from Zoom itself, but rather download from an non-Zoom website - contained malware: Zoom version 4.
Another version of the Zoom installer bypassed security controls by utilizing administrative credentials on Mac Operating Systems without final user consent. A zero-day vulnerability is an unknown vulnerability in software or hardware that hackers can take advantage of. The Windows vulnerability is a zero-day Remote Code Execution exploit.
More details have not been released. Zoombombing is another reason why users should be cautious when using Zoom. Zoombombing is a new type of harassment in which hate speech, pornography, and other inappropriate content is suddenly flashed by disrupting a video call on Zoom.
Zoombombing has led to various school districts, like New York City, and companies, like SpaceX, to ban the use of Zoom. These accounts were discovered by an independent security firm and verified by NBC News. Zoom has been working hard to mitigate these security issues and provide a better level of security and privacy for its users. The quick answer to the question of whether or not Zoom is safe to use depends on your intended use of the platform.
For most people who are using Zoom to communicate with their families and friends, the platform is relatively safe.
Zoom has been working around the clock and has responded quickly to the security issues that have been reported, as evidenced above, and continues to publish feature, security, and privacy enhancements.
If Zoom continues to listen to its user-base and the security community as the company improves and focuses on security and privacy, the widely-used videoconferencing platform may just become one of the most secure communications platforms available. There is no such thing as a completely secure anything. There will always be risk in using an application, platform, or device connected to the internet.
Written by: Edin Y. Skip to main content Resources. Zoom: Is it Safe? Stolen Credentials , stolen login credentials have been reported being sold for pennies in the dark web, which includes personal emails and credentials. Zoom is Addressing the Problems Zoom has been working hard to mitigate these security issues and provide a better level of security and privacy for its users. Use the Waiting Room feature to see who is attempting to join the meeting before allowing access.
Keep Zoom software up to date. Zoom has been busy with releasing patch updates to fix important issues. Password-protect your meetings. Manage your meeting participants. Make sure there is only one host to control the meeting and make sure the host understands how to control participants, screen-sharing, camera, and mute options. Join Zoom meetings through your web browser, rather than the desktop application. Unlike paid webinars, Hacker Hours are aimed to meet on a monthly basis to discuss cybersecurity issues and trends in an open format.
Attendees are encouraged to join the conversation and get their questions answered. SBS will also offer products and services to help financial institutions with these specific issues. Posted: Friday, May 22, Categories: Blog. Categories Education. Contact Us sbsinstitute sbscyber.
No comments:
Post a Comment