Episode 8.5

April 14, 2020

00:34:38

Zoom's RISE & FALL: A Security & Privacy Analysis | SR 8.5

Hosted by

Henry Nathan
Zoom's RISE & FALL: A Security & Privacy Analysis | SR 8.5
Surveillance Report
Zoom's RISE & FALL: A Security & Privacy Analysis | SR 8.5
/

Show Notes

Zoom has been all over the news! Tune in to this 6 part episode covering the following: 

1) Zoom Introduction and Company Beginnings

2) All of Zoom's Major Issues

3) Public Response To Zoom Concerns & Real World Effects

4) Zoom Responses and Changes To Scrutiny 

5) What Do We Make of This?

6) Using Zoom Semi-Privately and Securely.....ish. 

 

Donate to our channel through these methods!

XMR: https://techlore.tech/support.html

BAT: https://techlore.tech/ 

Patreon: https://www.patreon.com/techlore 

 

Sources

 

https://www.reddit.com/r/cybersecurity/comments/ft94dy/the_british_government_holds_a_cabinet_meeting/ 

https://blog.checkpoint.com/2020/03/30/covid-19-impact-cyber-criminals-target-zoom-domains/ 

https://blogs.harvard.edu/doc/2020/03/27/zoom/ 

https://twitter.com/c1truz_/status/1244737672930824193 

https://theintercept.com/2020/03/31/zoom-meeting-encryption/ 

https://twitter.com/hackerfantastic/status/1245133371262619654 

https://objective-see.com/blog/blog_0x56.html 

https://www.cbsnews.com/news/zoom-app-personal-data-selling-facebook-lawsuit-alleges/ 

https://www.vice.com/en_us/article/k7e95m/zoom-leaking-email-addresses-photos 

https://www.nytimes.com/2020/04/02/technology/zoom-linkedin-data.html 

https://citizenlab.ca/2020/04/move-fast-roll-your-own-crypto-a-quick-look-at-the-confidentiality-of-zoom-meetings/ 

https://medium.com/tenable-techblog/remotely-exploiting-zoom-meetings-5a811342ba1d 

https://www.theverge.com/2019/7/8/20687014/zoom-security-flaw-video-conference-websites-hijack-mac-cameras 

https://techcrunch.com/2020/04/03/zoom-calls-routed-china/ 

https://www.pressdemocrat.com/business/10878609-181/thousands-of-zoom-video-calls 

https://www.bleepingcomputer.com/news/security/over-500-000-zoom-accounts-sold-on-hacker-forums-the-dark-web/ 

https://www.nytimes.com/2020/03/30/technology/new-york-attorney-general-zoom-privacy.html 

https://abcnews.go.com/US/fbi-warns-video-conference-hijacking-amid-coronavirus-pandemic/story?id=69901757 

https://www.justice.gov/usao-edmi/pr/federal-state-and-local-law-enforcement-warn-against-teleconferencing-hacking-during 

https://mcnerney.house.gov/media-center/press-releases/rep-mcnerney-and-colleagues-push-zoom-for-answers-about-the-company-s 

https://gizmodo.com/zoom-accused-of-misrepresenting-security-measures-in-ne-1842756394 

https://www.theverge.com/2019/7/9/20688113/zoom-apple-mac-patch-vulnerability-emergency-fix-web-server-remove 

https://blog.zoom.us/wordpress/2020/03/29/zoom-privacy-policy/ 

https://www.bleepingcomputer.com/news/security/zoom-lets-attackers-steal-windows-credentials-run-programs-via-unc-links/ 

https://support.zoom.us/hc/en-us/articles/115004055706-Managing-Contacts 

https://support.zoom.us/hc/en-us/requests/new 

https://techcrunch.com/2020/04/03/zoom-waiting-rooms-default/ 

https://www.theverge.com/2020/4/13/21219835/zoom-data-center-call-routing-china-security-privacy-encryption 

https://9to5mac.com/2020/04/02/zoom-penetration-tests/ 

https://blog.zoom.us/wordpress/2020/04/01/a-message-to-our-users/ 

 

Other Episodes

Episode cover

Episode 9

April 20, 2020

Surveillance Report 9

Checkout Protonmail for easy, encrypted secure email: https://proton.go2cloud.org/SHAo  Help support us on Patreon: https://www.patreon.com/techlore  To watch the video on YouTube, subscribe to our channel: https://youtube.com/c/techlore  Welcome to the Techlore Surveillance Report, a weekly security and privacy news roundup to keep you up to speed on important updates in our digital world. Uploaded every weekend!  Techlore Website: https://techlore.tech Patreon: https://www.patreon.com/techlore Bitchute: https://www.bitchute.com/channel/techlore/ Techlore Subreddit: https://www.reddit.com/r/techlore/ Twitter: https://twitter.com/techloreistaken Discord Server: https://discord.gg/74WhF9C Matrix Room: https://matrix.to/#/#techlore:matrix.org Telegram Channel: https://t.me/techloreofficial Telegram Group: https://t.me/techloregroup Amazon Support Affiliate Link: https://www.amazon.com/shop/influencer20170928875 Merchandise: https://teespring.com/stores/lemur-shop  Sources Companies https://www.theregister.co.uk/2020/04/17google_coronavirus_spam// https://www.zdnet.com/article/exclusive-google-removes-49-chrome-extensions-caught-stealing-crypto-wallet-keys/  https://www.forbes.com/sites/gordonkelly/2020/04/18/google-chrome-81-critical-security-exploit-upgrade-warning-update-chrome-browser/  https://www.zdnet.com/article/microsoft-pushes-back-end-of-support-date-for-windows-10-1809/ https://www.bleepingcomputer.com/news/security/github-accounts-stolen-in-ongoing-phishing-attacks/  https://venturebeat.com/2020/04/16/ai-spots-critical-microsoft-security-bugs-97-of-the-time/ https://www.worcesternews.co.uk/news/18389791.ford-vw-cars-exposed-hackers-serious-security-flaws/ https://www.consumerreports.org/automotive-technology/the-cameras-in-your-car-may-be-harvesting-data-as-you-drive/ https://www.mrt.com/business/oil/article/Data-security-firm-finds-massive-leak-of-RigUp-15210749.php https://www.theverge.com/2020/4/17/21224718/clearview-ai-exposed-server-source-code-windows-ios-android-mac-apps-cloud-storage  https://www.zdnet.com/article/dell-releases-new-tool-to-detect-bios-attacks/ https://www.reuters.com/article/us-usa-twitter-lawsuit/u-s-judge-blocks-twitters-bid-to-reveal-government-surveillance-requests-idUSKBN2200CS https://www.zdnet.com/article/linksys-asks-users-to-reset-passwords-after-hackers-hijacked-home-routers-last-month/ https://www.zdnet.com/article/most-consumers-admit-to-sharing-passwords-with-someone-outside-their-home/  https://arstechnica.com/information-technology/2020/04/solved-how-android-backdoor-called-xhelper-survives-factory-resets/  https://www.vice.com/en_us/article/y3m83v/pastebin-made-it-harder-to-scrape-its-site-and-researchers-are-pissed-off  https://venturebeat.com/2020/04/17/ai-researchers-propose-bias-bounties-to-put-ethics-principles-into-practice/ https://www.zdnet.com/article/clipboard-hijacking-malware-found-in-725-ruby-libraries/ https://venturebeat.com/2020/04/14/a-clinical-team-used-mit-csails-ai-to-remotely-monitor-a-covid-19-patient/ Politics https://www.theguardian.com/world/2020/apr/12/uk-government-using-confidential-patient-data-in-coronavirus-response https://www.theguardian.com/politics/2020/apr/12/uk-app-to-track-coronavirus-spread-to-be-launched https://www.theguardian.com/australia-news/2020/apr/14/australian-government-plans-to-bring-in-mobile-phone-app-to-track-people-with-coronavirus https://www.swissinfo.ch/eng/coronavirus-science_swiss-pull-out-of-european-contact-tracing-app-project/45699230 https://www.bbc.com/news/technology-52294896 https://www.thesun.co.uk/news/11427878/mod-70-leaks-a-week-staff-post-online/ Misfits https://www.zdnet.com/article/tor-project-lays-off-a-third-of-its-staff/  https://www.bleepingcomputer.com/news/security/us-govt-hacker-used-stolen-ad-credentials-to-ransom-hospitals/  https://www.vice.com/en_us/article/qjdqgv/hackers-selling-critical-zoom-zero-day-exploit-for-500000 https://threatpost.com/zoom-bombing-attack-hits-u-s-government-meeting/154903/  ...

Play

00:24:40

Episode cover

Episode 27

January 26, 2021

Signal WENT VIRAL! Ft. The New Oil - Surveillance Report 27

Welcome to the Surveillance Report - featuring Techlore & The New Oil to keep you updated on the newest security & privacy news.   Visit The New Oil Website: https://thenewoil.xyz/   Techlore Website: https://techlore.tech Surveillance Report Podcast: https://surveillance-report.castos.com/ LBRY.tv: https://lbry.tv/@techlore:3 PeerTube: https://tube.privacytools.io/accounts/techlore/video-channels Support our mission to spread privacy:Patreon: https://www.patreon.com/techlore Amazon Support Affiliate Link: https://www.amazon.com/shop/influencer20170928875 Connect with our communities:Twitter: https://twitter.com/techloreistaken Discord Server: https://discord.gg/74WhF9C Matrix Room: https://matrix.to/#/#techlore:matrix.org Telegram Channel/Group: https://t.me/techloreofficial   Sources: Data Breaches https://www.zdnet.com/article/openwrt-reports-data-breach-after-hacker-gained-access-to-forum-admin-account/ https://www.zdnet.com/article/hackers-publish-thousands-of-files-after-government-agency-refuses-to-pay-ransom/ https://arstechnica.com/information-technology/2021/01/phishing-scam-had-all-the-bells-and-whistles-except-for-one/ https://www.zdnet.com/article/ransomware-victims-that-have-backups-are-paying-ransoms-to-stop-hackers-leaking-their-stolen-data/ https://www.zdnet.com/article/hacker-leaks-data-of-2-28-million-dating-site-users/ Companies https://www.zdnet.com/article/sec-filings-solarwinds-says-18000-customers-are-impacted-by-recent-hack/ https://www.theverge.com/2020/12/15/22176053/solarwinds-hack-client-list-russia-orion-it-compromised https://www.zdnet.com/article/malwarebytes-said-it-was-hacked-by-the-same-group-who-breached-solarwinds/ https://twitter.com/peterwsinger/status/1348616428702867457 https://techcrunch.com/2021/01/11/scraped-parler-data-is-a-metadata-goldmine/ https://www.wired.com/story/capitol-riot-security-congress-trump-mob-clean-up/ https://www.wired.com/story/faces-of-the-riot-capitol-insurrection-facial-recognition/ https://techcrunch.com/2021/01/15/whatsapp-delays-new-data-sharing-policy-enforcement-to-may-15/ https://www.ghacks.net/2021/01/02/mozilla-is-working-on-a-firefox-design-refresh/ https://brave.com/brave-integrates-ipfs/ https://www.pcworld.com/article/3603934/rip-old-school-internet-chrome-88-lays-flash-and-ftp-to-rest.html https://www.pcmag.com/news/apple-transparency-tool-will-tell-you-how-much-data-app-developers-are https://www.businessinsider.in/tech/news/over-100-million-debit-and-credit-card-users-data-has-been-leaked-online-from-payments-processor-juspay-amazon-and-swiggy/articleshow/80096472.cms https://www.bleepingcomputer.com/news/security/networking-giant-ubiquiti-alerts-customers-of-potential-data-breach/ https://www.bleepingcomputer.com/news/security/t-mobile-data-breach-exposed-phone-numbers-call-records/ https://www.zdnet.com/article/nissan-source-code-leaked-online-after-git-repo-misconfiguration/ https://techcrunch.com/2021/01/14/ring-neighbors-exposed-locations-addresses/ https://www.zdnet.com/article/fake-collaboration-apps-are-stealing-data-as-staff-struggle-with-home-working-security/ https://www.zdnet.com/article/i-looked-at-all-the-ways-microsoft-teams-tracks-users-and-my-head-is-spinning/ https://www.theverge.com/2021/1/21/22242718/twitter-bluesky-decentralized-social-media-team-project-update https://www.vice.com/en/article/jgqbmk/tiktok-data-collection https://www.nydailynews.com/news/national/ny-ex-adt-employee-admits-spying-on-customers-naked-women-20210121-kmjkd4qjljhsffxd5uwk6v7csa-story.html Research https://www.zdnet.com/article/academics-turn-ram-into-wifi-cards-to-steal-data-from-air-gapped-systems/ https://techcrunch.com/2021/01/13/facial-recognition-reveals-political-party-in-troubling-new-research/ https://securephones.io/main.pdf Politics https://venturebeat.com/2020/12/10/new-york-city-council-votes-to-prohibit-businesses-from-using-facial-recognition-without-public-notice/ https://www.governor.ny.gov/news/governor-cuomo-signs-legislation-suspending-use-and-directing-study-facial-recognition https://www.aclu.org/news/privacy-technology/the-fbi-is-secretly-breaking-into-encrypted-devices-were-suing/ https://www.vice.com/en/article/xgz4n3/muslim-app-location-data-salaat-first https://www.theverge.com/2021/1/22/22244848/us-intelligence-memo-admits-buying-smartphone-location-data https://www.theverge.com/2020/12/11/22170292/gizmodo-schools-fbi-grade-phone-hacking-surveillance-tech https://www.zdnet.com/article/president-biden-appoints-net-neutrality-champion-to-chair-the-fcc/ https://www.bloomberg.com/news/articles/2020-12-16/nigeria-orders-mobile-subscribers-to-link-phones-to-id-numbers https://www.zdnet.com/article/singapore-police-can-access-covid-19-contact-tracing-data-for-criminal-investigations/ https://apnews.com/article/technology-hacking-wellington-new-zealand-e316918f4e50aa025fea3da3648551ea https://www.bbc.com/news/technology-55749959 FOSS https://www.techrepublic.com/article/open-source-developers-say-securing-their-code-is-a-soul-withering-waste-of-time/ https://techcrunch.com/2020/12/23/telegram-to-launch-an-ad-platform-as-it-approaches-500-million-users/ https://www.ghacks.net/2021/01/08/linux-mint-20-1-long-term-support-release-is-out/ https://www.windowscentral.com/wine-60-has-over-8000-changes-help-windows-apps-run-linux https://thehackernews.com/2021/01/google-discloses-flaws-in-signal-fb.html https://www.zdnet.com/article/new-freakout-botnet-targets-linux-systems-running-unpatched-software/ Misfits https://www.fastcompany.com/90586835/amazon-wants-to-scan-your-body-to-make-perfectly-fitting-shirts https://www.nbcnews.com/tech/tech-news/snitches-wheels-police-turn-car-data-destroy-suspects-alibis-n1251939 https://www.bbc.com/news/technology-55439190 https://www.forbes.com/sites/scottcarpenter/2021/12/31/access-to-big-data-turns-farm-machine-makers-into-tech-firms/?sh=8b973ed7e473 https://www.zdnet.com/article/uk-police-warn-of-sextortion-attempts-in-intimate-online-dating-chats/ https://www.zdnet.com/article/kogan-cops-au310800-spamming-fine/ Guides https://www.zdnet.com/article/how-to-lock-down-your-google-account-and-keep-it-safe-from-outside-attackers/ https://www.zdnet.com/article/better-than-the-best-password-how-to-use-2fa-to-improve-your-security/ https://www.zdnet.com/article/awareness-isnt-enough-its-time-for-security-leaders-to-change-behaviors/ https://www.zdnet.com/article/microsoft-how-zero-trust-can-protect-against-sophisticated-hacking-attacks/ https://web.archive.org/web/20140525004902if_/http://safeandsavvy.f-secure.com/2013/11/27/yes-you-do-have-something-to-hide/ https://yashmehrotra.com/post/2021-01-15-practical-guide-to-privacy/ https://maxdesalle.com/privacy-how-to-get-off-the-radar-with-ease/ ...

Play

00:39:12

Episode cover

Episode 37

April 11, 2021

Signal...WHY? - Surveillance Report 37

Techlore: https://techlore.tech/The New Oil: https://thenewoil.xyz/ Welcome to the Surveillance Report - featuring Techlore & The New Oil to keep you updated on the newest security & privacy news. This week covers the recent LinkedIn breach, updates to the Facebook breach, Signal's new cryptocurrency, and more! Ledger Kickback Link: https://shop.ledger.com/pages/ledger-nano-x?r=aa86Trezor Kickback Link: https://shop.trezor.io/?offer_id=10&aff_id=5536 SR37 Sources: https://github.com/techlore-official/channel-content/blob/master/Surveillance%20Report%20Sources/SR37.md 00:00 Introduction01:00 Data Breaches10:08 Company News13:46 Research19:02 Political News26:58 FOSS News29:14 Misfits Techlore Website: https://techlore.techGo Incognito Course: https://techlore.tech/goincognito.htmlSurveillance Report Podcast: https://techlore.tech/sr.htmlOdysee: https://odysee.com/@techlore:3PeerTube: https://tube.privacytools.io/accounts/techlore/video-channels Support our mission to spread privacy to the masses:Privacy Shop: https://teespring.com/stores/techlore-merchPatreon: https://www.patreon.com/techloreKo-Fi: https://ko-fi.com/techloreAmazon Support Page: https://www.amazon.com/shop/influencer20170928875All Other Support Methods (PayPal, Monero, etc.): https://techlore.tech/support.html Connect with our communities:Twitter: https://twitter.com/techloreistakenDiscord: https://discord.gg/Xd7baMSpqSMatrix: https://matrix.to/#/#techlore:matrix.orgTelegram: https://t.me/techlore#surveillance #privacy #news ...

Play

00:38:50