News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Patch Lady – should we be concerned about Zoom?

    Posted on April 1st, 2020 at 22:49 Susan Bradley Comment on the AskWoody Lounge

    I’ve seen several comments on various venues about the risk of Zoom meetings.  Some of them are valid, others are….. hang on … who in their RIGHT MINDS posts the URL to a non password protected zoom meeting on a social location?

    I was listening to a presentation today and the gentlemen presenting was talking about how in times like these one has to balance risk with making sure the business survived.

    Here’s another person I respect … Dave Kennedy on the topic of Zoom and security:  https://threadreaderapp.com/thread/1245536000819986432.html

    First off as Lawrence Abrams writes … make sure you put a password on the Zoom meeting.    Next Zoom is working on the issue whereby NTLM hash values can be exposed, and Lawrence gives the workaround in the blog, but I have a better workaround.  Be EXTREMELY careful of clicking on ANYTHING right now.  I am seeing a huge uptick of COVID related emails and scams.  I’m seeing these kinds of scams come into my inbox (well, the notifications that they are being cleaned out of my inbox anyway)

    Subject: MUST READ-TRUTH ABOUT COVID-19
    Sender: valeria.flores@ambiente.gob.ec

    Time received: 4/1/2020 11:41:20 PM
    Message ID:<1870826593.23469281.1585784413797.JavaMail.zimbra@ambiente.gob.ec>
    Detections found:
    Virologyfiles.doc RTF/CVE-2017-11882.C.gen!Camelot

    So… be careful and remember right now this is about balancing the needs of the business and the users.  Absolute security doesn’t exist.