Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Compliance

Zoom Agrees to Step Up Security After New York Probe

New York state’s top prosecutor on Thursday announced that the company Zoom would improve security measures, after flaws were detected as the video conferencing platform soared in popularity amid the coronavirus pandemic.

New York state’s top prosecutor on Thursday announced that the company Zoom would improve security measures, after flaws were detected as the video conferencing platform soared in popularity amid the coronavirus pandemic.

The agreement wraps an investigation launched in March by New York Attorney General Letitia James into vulnerabilities in the California-based company’s software.

In a statement, James said Zoom would institute new security measures for the millions of users using the platform, including enhanced privacy controls.

The company also agreed to conduct regular risk assessment and software code reviews to detect vulnerabilities.

The number of daily video meetings on Zoom skyrocketed from 10 million in January to more than 300 million at the end of April.

But a “Zoom-bombing” phenomenon sparked warnings about lax security, as virtual intruders interrupted religious ceremonies, remote classes and other Zoom gatherings.

In some cases, pornographic images popped up.

James said Zoom would take steps to prevent those breaches as well as end its user data-sharing partnership with Facebook.

The platform is to improve privacy controls for free accounts — users avoid a monthly fee for meetings 40 minutes and under — along with education accounts for K-12 students.

All hosts will now be able to control access to conferences with a required password for those attempting to access a meeting.

“Our lives have inexorably changed over the past two months, and while Zoom has provided an invaluable service, it unacceptably did so without critical security protections,” James said in the statement.

“This agreement puts protections in place so that Zoom users have control over their privacy and security.”

Related: Zoom Acquires Keybase to Bring End-to-End Encryption to Video Platform

Related: Keys Used to Encrypt Zoom Meetings Sent to China

Related: Trojanized Zoom Apps Target Remote Workers

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.

Management & Strategy

Tens of cybersecurity companies have announced cutting staff over the past year, in some cases significant portions of their global workforce.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

Audits

Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...

Management & Strategy

Microsoft making a multiyear, multibillion dollar investment in the artificial intelligence startup OpenAI, maker of ChatGPT and other tools.

Incident Response

Cygnvs emerges from stealth mode with an incident response platform and $55 million in Series A funding.