Govt raises red flags over video conference app Zoom, calls it unsafe

  • Home ministry’s advisory comes at a time when the platform has gained prominence
  • Centre also asks all ministers and staff to refrain from conducting meetings on third-party apps such as Zoom

Shaswati Das, Prasid Banerjee
Updated17 Apr 2020, 12:36 AM IST
Zoom has now allowed support of third-party platforms, such as Box, Dropbox, and OneDrive for better sharing options
Zoom has now allowed support of third-party platforms, such as Box, Dropbox, and OneDrive for better sharing options(Reuters)

The Union home ministry has raised alarm bells, flagging video conferencing software Zoom as unsafe and vulnerable to cyber crimes.

The ministry’s notification comes at a time when the platform has gained prominence with most industries now working from home in the wake of the covid-19 outbreak, globally. At the same time, with privacy coming into question in the case of Zoom, the Centre has also asked all its ministers and staff to refrain from conducting any meetings on third party applications.

The MHA in its latest advisory through its Cyber Coordination Centre (CyCord) on Thursday has red-flagged the video conferencing facility as “unsafe”, days after India’s Computer Emergency Response Team (CERT-IN) had raised concerns over potential cyber attacks through Zoom.

In an order issued earlier on 30 March, CERT-IN said the application was vulnerable to cyber attacks, including leakage of sensitive information.

“Many organizations have allowed their staff to work from home to stop the spread of coronavirus disease. Online communication platforms such as Zoom, Microsoft Teams and Teams for Education, Slack, Cisco WebEx etc are being used for remote meetings and webinars,” the advisory said.

“Insecure usage of the platform may allow cyber criminals to access sensitive information such as meeting details and conversations,” it added.

In case of Zoom, a Motherboard analysis revealed that its iOS app sends data to social networking website Facebook even if a user doesn’t have an account on it. In fact, a user has filed a suit against the company, alleging that the app “collects information of its users and discloses, without adequate notice or authorisation, this personal information to third parties, including Facebook, invading the privacy of millions of users”.

Motherboard found that when a user opens Zoom, the app shares details about its users’ devices—the time zone they are in, device model, the city they are in, the phone carrier they are using and a “unique advertiser identifier” that can be used for targeted advertising.

“Zoom takes user security extremely seriously. A large number of global institutions ranging from the world’s largest financial services companies and telecommunications providers, to non-governmental organisations and government agencies, have done exhaustive security reviews of our user, network and datacenter layers and continue to use Zoom for most or all of their unified communications needs,” Zoom said in a statement.

On April 1, however, in a blog post, Zoom founder Eric S Yuan, had said the company is freezing all new features “effective immediately” and will be putting all of its engineering resources to focus on its “biggest trust, safety and privacy issues.” The company also said, on 27 March, that it has removed the Facebook SDK in its iOS app and “have reconfigured it to prevent it from collecting unnecessary device information” from users.

Both CERT-IN and the Union home ministry have now suggested, as part of the directive, that users and organisations keep the software up to date and ensure that the password for each meeting is changed and reset.

At the same time, it also suggested the host of the meeting to “end meeting” after the conference was over instead of “leaving” it, adding that “these suggestions are especially important for those meetings in which sensitive details are discussed.”

The home ministry also said these safety practices would prevent unauthorised entry into the meeting rooms, as well as thwart “DOS (denial of service) attacks and prevent authorised people to carry out malicious tasks within various conferences.”

In the meantime, the government on 13 April also issued an advisory to all central government officers cautioning them against using third-party software and apps.

Catch all the Business News , Breaking News Events and Latest News Updates on Live Mint. Download The Mint News App to get Daily Market Updates.

MoreLess
First Published:17 Apr 2020, 12:36 AM IST
Business NewsNewsIndiaGovt raises red flags over video conference app Zoom, calls it unsafe

Get Instant Loan up to ₹10 Lakh!

  • Employment Type

    Most Active Stocks

    Adani Power

    665.85
    02:59 PM | 16 SEP 2024
    32.3 (5.1%)

    Tata Steel

    154.20
    02:59 PM | 16 SEP 2024
    0.8 (0.52%)

    Bank Of Baroda

    238.80
    02:59 PM | 16 SEP 2024
    -0.5 (-0.21%)

    Bharat Electronics

    290.50
    02:59 PM | 16 SEP 2024
    0.55 (0.19%)
    More Active Stocks

    Market Snapshot

    • Top Gainers
    • Top Losers
    • 52 Week High

    Godfrey Phillips India

    7,940.45
    02:59 PM | 16 SEP 2024
    616.7 (8.42%)

    Adani Green Energy

    1,931.40
    02:59 PM | 16 SEP 2024
    143.55 (8.03%)

    Dixon Technologies (India)

    13,971.00
    02:59 PM | 16 SEP 2024
    949.6 (7.29%)

    Triveni Engineering & Indus

    507.80
    02:59 PM | 16 SEP 2024
    33.95 (7.16%)
    More from Top Gainers

    Recommended For You

      More Recommendations

      Gold Prices

      • 24K
      • 22K
      Bangalore
      73,120.00130.00
      Chennai
      73,260.00160.00
      Delhi
      75,415.00105.00
      Kolkata
      75,750.00150.00

      Fuel Price

      • Petrol
      • Diesel
      Bangalore
      102.86/L0.00
      Chennai
      100.85/L0.10
      Kolkata
      104.95/L0.00
      New Delhi
      94.72/L0.00

      Popular in News

        HomeMarketsPremiumInstant LoanMint Shorts