Zoom completes its 90-day privacy and security plan

Zoom has amassed a large base of users in 2020 due to the ongoing coronavirus pandemic.

Since numerous schools and businesses use the video conferencing solution, its cyber security architecture has come under scrutiny.

To address these concerns, Zoom has completed its 90-day privacy and security plan, adding a number of protective measures such as 2FA and addressing several related concerns along the way.

The implementation of 2FA is a powerful step towards combating ‘zoom bombing’, a zero-day vulnerability that can be exploited by malicious actors.

This also protects a user’s account from unauthorised login attempts and acts as a safeguard against those who are looking to compromise the personal data of others.

Thanks to 2FA, those who are attempting to access a Zoom session or account information have another barrier to overcome.

To make its software even more resilient, the company is now offering a bug bounty programme that is hosted on the Bugcrowd platform.

This allows it to tap into the knowledge and wisdom of cyber security professionals and ethical hackers, who make an active effort to identify its weaknesses.

Once these become known, the company can proceed to patch them.

Although AI and other security solutions are a valuable contribution towards the goal, nothing compares to human ingenuity when it comes to spotting a potential vulnerability.

Sometimes, beating a hacker requires you to think like one.

The more people who contribute, the greater the effect – this is where crowdsourcing comes in.

Ashish Gupta, CEO at Bugcrowd, stressed how important it is for crowdsourced security testing to remain an ongoing effort.

In the name of efficiency, the platform tries to find the right researchers and match them up with the most suitable case for their range of expertise.

Based on their contributions and findings, Zoom can become a stronger and more resilient platform over time.