Hackers Bombarded Zoom Conference With AG on Line: 5 Tips for Lawyers
Avoid the pitfalls of the popular videoconferencing app.
April 03, 2020 at 04:31 PM
5 minute read
Connecticut Attorney General William Tong said he was attending a conference this week with state Lt. Gov. Susan Bysiewicz via the video conferencing app Zoom when hackers inundated the meeting with "hundreds of profane and racist comments."
It's a sign of the need to evaluate the California-based online platform's online security and privacy, Tong said.
It's an important issue as COVID-19 precautions have forced lawyers throughout the country to work remotely, making Zoom increasingly popular among attorneys and judges.
In New York, Attorney General Letitia James said the state is monitoring Zoom's data and privacy practices amid the app's growing popularity.
And across the nation, breeches could be far-reaching.
Use the 'waiting room' feature
In Texas alone, for instance, about 3,000 judges use Zoom to conduct business in place of in-person court activities, according to Judge Roy Ferguson of the 394th Judicial District.
The many Zoom troll groups out there are among the concerns for Ferguson, who oversees five counties covering about 20,000 square miles.
"They are attacking Zoom meetings nationwide," the judge said. "I have, though, not heard of any cases in Texas because we have activated the 'waiting room' feature so no one can pop in."
The judge relied on the feature to ensure public access to criminal felony proceedings, probation status updates and a COVID-19 emergency hearing. But he also used it to ward off malicious transmissions.
"If you publicize your meeting code, the trolls will attend your meeting and will attack the meeting," Ferguson said. "If you don't have the waiting room feature on, which not everyone does although we do in Texas, trolls will enter the room and flood it with inappropriate materials like porn, or just kill the meeting. They can also send infected files to all the participants through various features, and try to hack participating computers."
Generate new codes for each meeting
Lawyers advise users to take steps to ensure their own security.
"I think people were expecting too much from Zoom," said attorney David Conrad, a principal of the Dallas, Texas, offices of nationwide firm Fish & Richardson, which ranks 84th on Am Law 200.
Conrad's practice involves a wide range of technological issues involving e-commerce, website systems and computer software.
"Many people don't think about security, and about whether their conversations are secure. They need to realize that it's just like any other videoconference platform, and there are limitations on how secure those systems are."
Conrad said Zoom has been pro-active in getting some of the kinks out and addressing certain vulnerabilities. But he said the users should still work to make their Zoom meeting as secure as possible by deciding which callers to allow into each meeting.
"Even if the meeting's ID and password get out, the host still has control," he said.
To help avoid hackers and trolls, Ferguson and other judges generate new meeting codes for every hearing.
Install updates
Fred Scholl, professor and director of the cybersecurity program at Quinnipiac University in Connecticut, advises constant vigilance.
"You should update your Zoom application on almost a daily basis," Scholl said. "You need to keep up with technology. And it's changing everyday. Zoom might ask if you want new updates because there are new versions available. Take the time to say yes."
Control screen shares
Other features protect users by limiting what participants can display.
"You can prevent people from screensharing via the meeting, unless you authorize them," Scholl said.
Beware of fake tech support
"There are many tech-support scams out there," Scholl said. "Now that millions of people are using Zoom, there are trolls setting up fake websites for tech support in Zoom. There are also phone scams, and you can expect more scams. It's so easy to set up a fake website. There is only one real website for Zoom tech support, and that's at zoom.us."
In Connecticut on Friday, Tong put out an advisory encouraging everyone to practice safer videoconferencing that includes ensuring the video conference software is up-to-date and that the conferences are private "either by requiring a password for entry or controlling guest access through a virtual waiting room."
Related stories:
Pandemics and Ethics: How To Sustain Lawyer Quality and Client Service
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllAfter 2024's Regulatory Tsunami, Financial Services Firms Hope Storm Clouds Break
Judge Slashes $2M in Punitive Damages in Sober-Living Harassment Case
Managing Partner Vindicated in Disciplinary Proceeding Brought by Former Associate
5 minute readConnecticut Movers: Year-End Promotions, Hires and an Office Opening
5 minute readLaw Firms Mentioned
Trending Stories
- 1Lawyer’s Resolutions: Focusing on 2025
- 2Houston Judge Exonerated on Appeal, Public Reprimand Vacated
- 3Bar Report - Dec. 30
- 4Employment Law Developments to Expect From the Second Trump Administration
- 5How I Made Law Firm Leadership: 'It’s Imperative That You Never Stop Learning,' Says Ian Ribald of Ballard Spahr
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250