Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion
‎03-31-2020 10:11 PM
‎03-31-2020 10:11 PM

Is Zoom conferencing safe to use or not?

Hi All

 

According to "The Intercept" Zoom has some issues, which can result in data leakage, privacy and apparently has encryption issues.

 

Does it have issues, during this crisis, as it is being actively used even by New Zealand Government agencies too for updates: 

 

https://theintercept.com/2020/03/31/zoom-meeting-encryption/

 

https://www.businessinsider.com.au/zoom-privacy-issues-fbi-facebook-data-sharing-2020-3?r=US&IR=T

 

https://arstechnica.com/tech-policy/2020/03/zooms-privacy-problems-are-growing-as-platform-explodes-...

 

Or does someone have an agenda against the company?

 

Regards

 

Caute_cautim

Reply
0 Kudos
49 Replies
kpinkham
Newcomer II
‎04-04-2020 12:04 PM
‎04-04-2020 12:04 PM

He also apologized about security lapses last July but they continued.

 

https://www.wired.com/story/zoom-flaw-web-server-fix/

Reply
0 Kudos
rslade
Influencer II
‎04-04-2020 03:06 PM
‎04-04-2020 03:06 PM

Since it seems likely that China can surveil basically any Zoom meeting/call/chat, I think it would be a good idea, in national security terms, for everyone, as much as possible, to use Zoom for inconsequential family parties and so forth, so that important business and government meetings might get lost in the chaff ...


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Reply
0 Kudos
rslade
Influencer II
‎04-04-2020 07:01 PM
‎04-04-2020 07:01 PM

Ode to Zoom


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Reply
0 Kudos
CraginS
Defender I
‎04-04-2020 08:35 PM
‎04-04-2020 08:35 PM

The story keeps getting worse.

First, the Zoom site had claimed they were using end-to-end encryption, when they are now known not to be. That was not a mistake, that was a lie.

Now, Washington Post has found that all ZOOM user recordings were using the same name, and a large number of them are discoverable as unencrypted  files on various storage sites.See

Thousands of Zoom video calls left exposed on open Web

 

 

Current promises to correct the recently exposed problems should be taken with a grain of salt; no, more like an entire salt shaker.

 

Craig

 

D. Cragin Shelton, DSc
Dr.Cragin@iCloud.com
My Blog
My LinkeDin Profile
My Community Posts
Reply
0 Kudos
CraginS
Defender I
‎04-05-2020 03:22 PM
‎04-05-2020 03:22 PM

More pieces are falling into place, and the picture is not pretty at all.

Neither the program and service ZOOM, nor any statements made by Eric Yuan or the company should be trusted.

@Caute_cautim @rslade @AppDefects @mgorman @kpinkham @dcontesti 

 

Read the article here:

Move Fast & Roll Your Own Crypto
A Quick Look at the Confidentiality of Zoom Meetings
By Bill Marczak and John Scott-Railton April 3, 2020

 

 

Craig

 

D. Cragin Shelton, DSc
Dr.Cragin@iCloud.com
My Blog
My LinkeDin Profile
My Community Posts
Reply
0 Kudos
Caute_cautim
Community Champion
‎04-07-2020 08:08 PM
‎04-07-2020 08:08 PM

Well done Taiwan - some commonsense at last: 

 

https://techcrunch.com/2020/04/07/taiwans-government-bars-its-agencies-from-using-zoom-over-security...

 

I just love it, when you attempt to assist people, in Peerlyst for instance, and one gets lampooned for using commonsense - when someone just wants to make a name by putting in appropriate mitigations.

 

Zoom in okay for social interactions, but not for business or official purposes.

 

When in reality the whole solution is shot from the baseline upwards.

 

@rsladeThanks to Rob, I did read "The Claws of the Panda" as he suggested - it was a good read and well recommended.   I suggest many more do so. 

 

One wonders, why we bother to show our head above the parapet on occasions.

 

Regards

 

Caute_Cautim

Reply
0 Kudos
AppDefects
Community Champion
‎04-07-2020 08:42 PM
‎04-07-2020 08:42 PM

@CraginS wrote:

More pieces are falling into place, and the picture is not pretty at all.

 

Famous last words...

Reply
0 Kudos
AppDefects
Community Champion
‎04-08-2020 09:15 PM
‎04-08-2020 09:15 PM

Zoom shareholders have filed a class-action suit (PDF) in California. It alleges that Zoom violated securities law by covering up known problems with its product. Now the fun begins!

Reply
0 Kudos
rslade
Influencer II
‎04-09-2020 02:41 PM
‎04-09-2020 02:41 PM

Patch Friday:

 

 

EVLCY6cUEAIV3O4

 


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Reply
CraginS
Defender I
‎04-09-2020 07:02 PM
‎04-09-2020 07:02 PM

@rslade wrote:

Patch Friday:

 

 

EVLCY6cUEAIV3O4

 

Rachel @AppDefects , John @Caute_cautim , and Grandpa Rob @rslade , 

As professionals in the field of security and privacy, we have nothing to worry about. The public will stop using ZOOM just a quickly as they all jumped off of FaceBook once its perfidy was apparent.

 

Craig

 

D. Cragin Shelton, DSc
Dr.Cragin@iCloud.com
My Blog
My LinkeDin Profile
My Community Posts
Reply