Ministry of Home Affairs has issued an advisory saying that video-conferencing application Zoom “is not a secure platform” for private individuals and advised against use by government offices/staff for official purposes.
Zoom app gained a zooming response after coronavirus pandemic when people were doing work from home the main selling point of a zoom over other video conference is it offers free, 40-minute conference calls with up to 100 attendees.
For using zoom It’s easy people don’t need a login to access a meeting and the interface is relatively intuitive. However, those same features put people at risk, Zoom randomly generates ID access code and lack of password required to join the call.
MHA Guideline To Use Zoom Application Settings
- Create a user id and password for each meeting
- Waiting room should be created in-app so that user will able to enter the meeting when the host gives the permission
- Join feature should be disabled before hosting
- Screen sharing should be allowed by host only
- Allow removed participants to re-join” should be disabled
- Restrict or disable file transfer
- Lock the meeting advised when all the participants have joined
- Restrict recording feature
- End the meeting (Just not leave the meeting, if you are an administrator )
Hacked data for Sale on Social Media Platform
According to cyber risk assessment cyble over 500,000 Zoom accounts are being sold on the dark web, account credentials were gathered though attackers by attempting to login to zoom using an account leaked and these logins are compiled into the list that is sold to other hackers.