Zoom to add end-to-end encryption with Keybase acquisition

Credit to Author: Matthew Finnegan| Date: Fri, 08 May 2020 05:24:00 -0700

Zoom has acquired secure messaging and identity management firm Keybase as its looks to shore up security capabilities on its platform with end-to-end encryption.

The acquisition will give Zoom access to Keybase’s encryption technology, used to secure online identities, as well as its team of engineers. Launched in 2014, Keybase lets users encrypt social media messages and shared files with public key encryption to ensure that communications stay private. 

Keybase’s cofounder Max Krohn will now head up Zoom’s security team, Zoom said. Krohn’s new role was first detailed by CNBC.

To read this article in full, please click here

Read more

Zoom unveils a host of new privacy, security features

Credit to Author: Charlotte Trueman| Date: Wed, 22 Apr 2020 08:27:00 -0700

Looking to bounce back from a spate of recent security miss-steps, video conferencing platform Zoom today announced a variety of new privacy and security capabilities in Zoom 5.0, a key milestone in the company’s recently launched 90-day security plan.

The primary difference between the current version of Zoom software and Zoom 5.0 is the addition of support for AES 256-bit GCM encryption; it’s designed to provide increased protection for meeting data and resistance to tampering. The new level of encryption will be available across Zoom Meeting, Zoom Video Webinar, and Zoom Phone.

To read this article in full, please click here

Read more

Google, Microsoft talk up security after Zoom firestorm

Credit to Author: Charlotte Trueman| Date: Thu, 09 Apr 2020 10:13:00 -0700

As video conferencing platform Zoom continues to weather unfavorable headlines about its security, two big market rivals are doubling down on commitments to keeps users safe.

In recent weeks, Zoom has faced a barrage of criticism involving privacy and security failings, culminating in CEO Eric Yuan acknowledging this week that the company “moved too fast” but is  now committed to being “open and honest with [customers] about areas where we are strengthening our platform.” He also announced that Zoom had stopped development of new product features for 90 days to focus on security.

To read this article in full, please click here

Read more

Zoom hit by investor lawsuit as security, privacy concerns mount

Credit to Author: Matthew Finnegan| Date: Thu, 09 Apr 2020 06:45:00 -0700

The challenges facing Zoom continue to mount, as the company now faces an investor lawsuit and more organizations ban the use of the video meeting app due to privacy and security concerns. The company also upped efforts to improve its security and privacy practices by hiring Facebook’s former CSO as a consultant. 

Zoom has seen a surge in use in recent weeks as self isolation in response to the pandemic ramps up the demand for video software. As its popularity has boomed – both for business and personal use – and the company’s stock price rocketed, Zoom has come under pressure on a number of fronts. 

To read this article in full, please click here

Read more

Do’s and don’ts of videoconferencing security

Credit to Author: Keith Shaw| Date: Tue, 07 Apr 2020 03:00:00 -0700

When any technology sees its popularity increase quickly, the number of bad actors taking advantage of new and untrained users also grows. The world is seeing this now with videoconferencing services and applications, as reports about the popular Zoom app being hijacked — known as “Zoom-bombing” — have surfaced.

With multiple reports of conferences being disrupted by pornographic and/or hate images and threatening language, the FBI’s Boston office recently issued a warning for users of videoconferencing platforms about the incidents. Security expert and investigative journalist Brian Krebs provided details on Zoom’s password problems and how hackers were able to use “war dialing” methods to discover meeting IDs and passwords for Zoom meetings.

To read this article in full, please click here

Read more

Zoom clamps down further on security weaknesses

Credit to Author: Matthew Finnegan| Date: Mon, 06 Apr 2020 11:45:00 -0700

Zoom, which on Friday stopped development of new product features so it could focus on fixing various privacy and security issues, clamped down even further on security weaknesses over the weekend.

The company on Saturday switched on default password settings and waiting rooms for users of its Free Basic tier and those with a single account on its cheapest paid tier, such as K-12 eduction accounts. All meetings that use a Personal Meeting ID (PMI) will now need a password, and password settings that had been disabled will be re-enabled. As a result, passwords will be required for instant meetings, for participants joining by phone and when a new meeting is scheduled.

To read this article in full, please click here

Read more