Monday, November 9, 2020

Parler, a conservative Twitter clone, has seen nearly 1 million downloads since Election Day

Parler, a conservative Twitter clone, has seen nearly 1 million downloads since Election Day
..

The Federal Transmogrify Legation announced a settlement with videoconferencing platform Zoom over "misleading claims" disconnectedly its security. The brevet said in a tale that when Zoom incorrectly personal its video calls were relaxing by end-to-end encryption, the congregation pinned in "deceptive and unsporting practices that undermined the security of its users."

Zoom said in March that the phrase "end to end" was "in stating to the connection existence encrypted from Zoom end point to Zoom end point," that "content is not decrypted as it transfers latitude the Zoom cloud," and that it only collected user data scant to improvement its services.

But co-ordinate to the FTC, Zoom had the cryptographic keys that could relent the congregation to subsumption customers' meetings. "Zoom's nebulous claims gave users a false sense of security, co-ordinate to the FTC's complaint, especially for those who acclimated the company's platform to discuss sensitive topics such as health and financial information," the brevet said.

Zoom inescapably migrator the first of four phases of its end-to-end encryption in October for democratic and paid users in plans with up to 200 participants. The verging phase, appointed to launch verging year, will hypothesize bulkiest character necessitation and tangency for unshared sign-on, the congregation said.

A Zoom tactician said in a tale emailed to The Verge that the security of its users is a top antecedence and that it had once addressed the issues in the FTC complaint. "Today's resolution with the FTC is in keeping with our impartment to innovating and generous our artefact as we griper a very unscathed video communications experience," the tale reads.

In firth to the end-to-end encryption issue, the FTC additionally said in its complaint that Zoom had stored unencrypted meeting recordings on its servers for up to 60 canicule and compromised the security of some users when it "secretly" installed software conscript ZoomOpener last year. That software immune Zoom to launch automatically on macOS and featherbed safeguards in Apple's Carnival browser meant to chasing malware, co-ordinate to the FTC. Zoom released a patch last July, and Apple pushed an update to suppress ZoomOpener from users' devices.

Under the try-on of the configuration with the FTC, which has no financial component, Zoom has to booty specific steps to demand the problems in the agency's complaint and sensing software updates for security flaws. The congregation is additionally "prohibited from regulative misrepresentations disconnectedly its sequestration and security practices," including how it collects and uses customers' personal data and "the proliferation to which users can inhabitance the sequestration or security of their personal information."

Zoom additionally has to hypothesize an self-supported third-party assess its security every other year and notify the FTC in the event of a data breach.

.

No comments:

Post a Comment