Security News > 2020 > April > After intense scrutiny, Zoom tightens up security with version 5. New features include not, er, spilling video calls to network snoops

After intense scrutiny, Zoom tightens up security with version 5. New features include not, er, spilling video calls to network snoops
2020-04-22 20:54

Zoom's ongoing game of whack-a-mole with security bugs in its code continued today with the imminent emission of version 5, replete with support for 256-bit AES-GCM encryption.

As hundreds of millions of netizens, forced to stay home and work remotely if possible amid the coronavirus pandemic, flocked to Zoom's chat products, its code fell under intense scrutiny.

The encryption upgrade in Zoom 5.0 will better protect data in transit - it previously used AES-ECB, which leaked video frames to eavesdroppers.

In addition to the encryption, Zoom will allow account admins to select which of its data centers can handle users' data, after some of Zoom's servers in China ended up handling calls from outside China.

It is with the user experience where Zoom may start to come a little unstuck as it ramps up security by making its platform, frankly, a little harder to use.


News URL

https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/04/22/zoom_5/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Zoom 54 4 51 80 12 147