At Zoom, New Privacy and Security Problems Keep Emerging

Allen St. John

April 1, 2020 at 6:53 PM·4 min read

Consumer Reports has no financial relationship with advertisers on this site.

Update: Zoom says it will take strong steps to address privacy and security issues, such as those described in this article. Among other changes detailed in a long blog post, the company says it is freezing the development of new features to focus on fixing existing problems, removing the controversial attention tracker feature, and soliciting in-depth reviews by outside experts and users. Justin Brookman, director of privacy and technology policy for Consumer Reports, says, "This is impressive. It's refreshing to see a Silicon Valley company admit mistakes and make meaningful changes so quickly." This article was originally published on April 1, 2020.

Zoom, the widely used teleconferencing service, has been receiving a lot of scrutiny for the way it handles the digital privacy and security of its users. A flurry of new revelations in recent days could make some consumers second-guess whether they want to use the platform at all.

Last week, Consumer Reports found that Zoom’s privacy policy seemed to leave the company free to use video and other user content for targeted advertising and other business purposes. Over the weekend, the company revised its privacy policy to say that’s off-limits. It also removed commonly used Facebook tracking software from its mobile app, in response to an article published on the tech news site Motherboard.

The company reacted quickly to those issues, but bad privacy news has continued to mount, with Zoom users filing a class-action lawsuit in California concerned about the Facebook sharing, the New York state attorney general looking into alleged security lapses, and several researchers reporting software vulnerabilities that could put consumer information at risk.

“People should be cognizant of the privacy and security threats when using these teleconferencing services,” says Justin Brookman, director of privacy and technology policy at Consumer Reports. “This is uncharted territory for a lot of us who are suddenly very dependent on these platforms, and we’re not conditioned to think about the risks and potential misuses.”

Several security vulnerabilities have been reported. One problem could compromise Windows passwords, while a problem with Zoom’s “Company Directory” setting could cause the platform to share personal email addresses inadvertently with other users—potentially hundreds or thousands of them. Another researcher pointed out a bug that could allow an attacker to take over the camera and mic on a Mac. A similar flaw was fixed last year.

In addition, The Intercept has pointed out that the Zoom website says the service supports end-to-end encryption, a high level of protection for personal communications, but that the service actually encrypts data only in transit, a less robust form of protection.

While none of these security glitches individually posts a huge threat to users, experts say that together they form a disturbing pattern.

“These are issues that should have been caught by Zoom, and it raises the question of what else has been missed by the company, and whether they’re truly taking the security and privacy needs of their customers seriously,” says Bill Fitzgerald, a privacy researcher in Consumer Reports’ Digital Lab.

The company says that some of the problems are growing pains associated with the global crisis. “Zoom was originally developed for enterprise use,” a spokesman says. During the pandemic, “as more and new kinds of users start using Zoom during this time, Zoom has been proactively engaging to make sure they understand Zoom’s relevant policies, as well as the best ways to use the platform and protect their meetings. We are proud of the role we are playing during this challenging time.”

How to Use Zoom More Safely

If you want or need to continue using Zoom, you can take a few steps to enhance your privacy.

The most basic precaution is to assume that anything you say or do in a Zoom meeting could be recorded by the meeting host and possibly other participants. Those recordings can then be shared with third parties who weren’t in the original meeting.

If you’re the host, you should turn on the option that notifies participants that you intend to record the meeting and ask for their consent.

To prevent “Zoombombing,” the unauthorized takeover of a Zoom meeting by pranksters, turn on password protection in every meeting and set screen sharing to Host Only. Don’t share meeting links, and ask participants not to share them, either.

If you’re in a meeting at home, pay attention to your surroundings. Users who don’t want clients and coworkers to see the books on a shelf or the dirty dishes in the sink can use a photo from their hard drive as a background; the feature works well.

And if you don’t want to receive targeted ads from Zoom after going to zoom.us, you can click the Cookie Preferences link at the bottom of any page on the site and adjust the slider to Required Cookies.

Consumer Reports is an independent, nonprofit organization that works side by side with consumers to create a fairer, safer, and healthier world. CR does not endorse products or services, and does not accept advertising. Copyright © 2020, Consumer Reports, Inc.

Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever
Caitlin Clark’s WNBA preseason debut went much like her senior year at Iowa. She hit a bunch of 3s and did so in front of a sold-out crowd.
Yahoo Sports
NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?
Which teams did the best in the NFL Draft?
Yahoo Sports
2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick
Yahoo Sports' Charles McDonald breaks down the Broncos' 2024 draft.
Yahoo Sports
No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it
The quality was choppy, but it was better than what the WNBA had.
Yahoo Sports
Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race
Race organizers say they'll revoke a Trump fundraiser's suite license if he holds an event for the former president on Sunday at the race.
Yahoo Sports
Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset
The 150th Kentucky Derby produced yet another magnificent two-minute spectacle.
Yahoo Sports
New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal
It turns out the money was going from Ohtani's bank account to an illegal bookie to ... casinos.
Yahoo Sports
NFL Draft grades for all 32 teams | Zero Blitz
Jason Fitz and Frank Schwab join forces to recap the draft in the best way they know how: letter grades! Fitz and Frank discuss all 32 teams division by division as they give a snapshot of how fans should be feeling heading into the 2024 season. The duo have key debates on the Dallas Cowboys, New York Giants, New Orleans Saints, Los Angeles Rams, New England Patriots, Las Vegas Raiders and more.
Yahoo Sports
The best RBs for 2024 fantasy football according to our analysts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Sports
Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets
Despite a trip to the Western Conference finals in his first season with the team, the Lakers are now ready to look for a replacement for Darvin Ham.
Yahoo Finance
CVS stock plunges after earnings numbers one analyst 'did not even believe'
CVS warns it could cede Medicare Advantage market share as reimbursement rates pressure the company.
Yahoo Sports
Diana Taurasi’s trash-talking, in-your-face ways may be a bit of a shock to new WNBA fans
Caitlin Clark fans beware: You never know what the 20-year veteran might say … or do.
Yahoo Life Shopping
Does castor oil really help with hair growth? We asked the experts, and their answer may surprise you
It's inexpensive, but is it effective? Dermatologists' verdict is in — and it's unanimous.
Yahoo Sports
Tight end rankings for 2024 fantasy football 2024
The Yahoo Fantasy football analysts reveal their first tight end rankings for the 2024 NFL season.
Yahoo Sports
Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46
The Seminoles lost 23-16 to Tennessee in the first-ever BCS title game.
Yahoo News
2nd Boeing whistleblower found dead. Here's a timeline of the company's mounting problems.
This is the second Boeing whistleblower to die in the last two months.
Yahoo Finance
Warren Buffett pays tribute to Charlie Munger on a 'tough day' for shareholders
This year’s Berkshire Hathaway annual shareholder meeting marked a new era for the Oracle of Omaha, Warren Buffett. It’s the investing legend’s first without his right-hand man, Charlie Munger.
Yahoo Sports
How to watch the 2024 WNBA preseason: Caitlin Clark’s next Indiana Fever game time, channel and more
The WNBA preseason tips off this Friday. Here's how you can catch Caitlin Clark's first game.
Yahoo Sports
MLB Power Rankings: Braves move into the top spot followed by Dodgers, Phillies as injuries take a toll across the league
From the Braves to the Marlins, here's where all 30 teams stand after the season's first month.

News

Life

Entertainment

Finance

Sports

New on Yahoo

At Zoom, New Privacy and Security Problems Keep Emerging

How to Use Zoom More Safely

Recommended Stories

Former NBA guard Darius Morris dies at 33

Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever

NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?

2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick

No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it

Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race

Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset

New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal

NFL Draft grades for all 32 teams | Zero Blitz

The best RBs for 2024 fantasy football according to our analysts

Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets

CVS stock plunges after earnings numbers one analyst 'did not even believe'

Diana Taurasi’s trash-talking, in-your-face ways may be a bit of a shock to new WNBA fans

Does castor oil really help with hair growth? We asked the experts, and their answer may surprise you

Tight end rankings for 2024 fantasy football 2024

Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46

2nd Boeing whistleblower found dead. Here's a timeline of the company's mounting problems.

Warren Buffett pays tribute to Charlie Munger on a 'tough day' for shareholders

How to watch the 2024 WNBA preseason: Caitlin Clark’s next Indiana Fever game time, channel and more

MLB Power Rankings: Braves move into the top spot followed by Dodgers, Phillies as injuries take a toll across the league