Video Teleconferencing Hijacking (VTH) or what is now being called Zoom Bombing has started to increase with the numerous video calls being made due to the numerous states’ “Stay At Home” policies. Zoom Bombing, as this has come to be known, is when an individual hacks into a video call to obtain proprietary information, disrupt the video call or cause chaos by shouting or displaying offensive images.
On April 2, 2020, the Federal Bureau of Investigation (FBI) released an article on defending against Zoom Bombing. Within the FBI (Boston Division) report, they mentioned two incidents that occurred in Massachusetts School Videoconferencing.
- While a teacher was conducting online instruction using the software Zoom, an unidentified person joined the conference and started yelling profanity and gave out the instructor’s home address.*
- Another school reported a meeting being accessed by an unidentified person and they were displaying swastika tattoos.*
Other reports continue to filter in regarding Zoom Bombing incidents, many with profanity, pornography, and other offensive images.
As your company implements teleconferencing solutions, you should try to follow some of the guidelines listed below to help ensure a safe environment:
- Do not use public video-conferencing options.
- Screen share should be set to “Host Only” – if you need to share the screen, make sure you know who is on the other endpoint.
- Manage the list of invitees, know who is joining your call.
- Verify you are on the latest version of the videoconferencing software.
- Make sure your remote workers are abiding by your business’s cyber-security policy.
- Verify your anti-virus and anti-malware software is current and running.
- Setup passwords for your meetings.
- Do not share your meeting IDs on social media.
- Use Two-Factor Authentication if available.
- Mute your listeners.
- Disable video of inappropriate participants.
*FBI Report – March 30, 2020 – “FBI Warns of Teleconferencing and Online Classroom Hijacking During COVID-19 Pandemic”