A boutique cyber security consultancy offering a variety of information security consultancy and compliance services designed to meet the individual needs of SME’s, public sector organisations and larger corporations, who want to protect their business and enhance the overall security of their internal and external information systems.
A boutique cyber security consultancy offering a variety of information security consultancy and compliance services designed to meet the individual needs of SME’s, public sector organisations and larger corporations, who want to protect their business and enhance the overall security of their internal and external information systems.

FBI Releases Guidance on Defending Against VTC Hijacking and Zoom-bombing

Original release date: April 2, 2020

The Federal Bureau of Investigation (FBI) has released an article on defending against video-teleconferencing (VTC) hijacking (referred to as “Zoom-bombing” when attacks are to the Zoom VTC platform).  Many organizations and individuals are increasingly dependent on VTC platforms, such as Zoom and Microsoft Teams, to stay connected during the Coronavirus Disease 2019 (COVID-19) pandemic. The FBI has released this guidance in response to an increase in reports of VTC hijacking.

The Cybersecurity and Infrastructure Security Agency encourages users and administrators to review the FBI article as well as the following steps to improve VTC cybersecurity:

  • Ensure meetings are private, either by requiring a password for entry or controlling guest access from a waiting room.
  • Consider security requirements when selecting vendors. For example, if end-to-end encryption is necessary, does the vendor offer it?
  • Ensure VTC software is up to date. See Understanding Patches and Software Updates.

CISA also recommends the following VTC cybersecurity resources:

This product is provided subject to this Notification and this Privacy & Use policy.

from CISA Current Activity https://bit.ly/2UApQ0Y
via US-CERT Current Activity http://ift.tt/1Btyqkb Stay safe *”This link is provided for informational purposes only and does not represent an endorsement by or affiliation with the US-CERT (DHS)