FTC Says Zoom Misled Users on Its Security for Meetings

Federal regulators are requiring Zoom to strengthen its security in a proposed settlement of allegations that the video conferencing service misled users about its level of security for meetings.

The settlement was announced Monday by the Federal Trade Commission. A complaint filed by the agency accused Zoom of deceiving users over security since at least 2016. It said the company held on to cryptographic keys that allowed it to access content from its customers’ meetings, and secured meetings with a lower level of privacy encryption than it promised customers.

The regulators alleged that Zoom “engaged in a series of deceptive and unfair practices that undermined the security of its users.”

Zoom Video Communications Inc., based in San Jose, California, would be required under the settlement to take specific measures, such as establishing a program for resolving privacy vulnerability. Company personnel would be required to review any software updates for security flaws.

The vote was 3-2 to propose the agreement, with the FTC’s two Democratic commissioners, Rohit Chopra and Rebecca Kelly Slaughter, dissenting because it doesn’t require refunds or other redress for affected customers. The proposal will be opened to public comment for 30 days, after which the agency will decide whether to make it final.

Related: Zoom’s Security and Privacy Woes Violated GDPR, Expert Says

Related: Zoom Announces Technical Preview of End-to-End Encryption

Related: Zoom Rolls Out 2FA Support for All Accounts

view counter

Previous Columns by Associated Press:

Don't forget to share

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *