Scribd Logo
Upload

Welcome to Scribd!

  • Zoom Bombing Mitigations - RV2

    Uploaded by

    irfan dadi
    27 views1 page
    1) Use passwords, waiting rooms, and lock meetings to control who can join. Disable screen sharing and file transfers to prevent data loss. Mute participants and turn off annotations. 2) Be aware of what is visible on your camera feed before meetings start. Remove confidential documents and consider using a virtual background. Keep your microphone muted until speaking. 3) Update Zoom clients and do not post meeting IDs publicly. Lock meetings after intended participants join. Take security settings like password requirements into account.

    Original Description:

    Zoom Bombing Mitigations_RV2

    Original Title

    Zoom Bombing Mitigations_RV2

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    1) Use passwords, waiting rooms, and lock meetings to control who can join. Disable screen sharing and file transfers to prevent data loss. Mute participants and turn off annotations. 2) Be aware of what is visible on your camera feed before meetings start. Remove confidential documents and consider using a virtual background. Keep your microphone muted until speaking. 3) Update Zoom clients and do not post meeting IDs publicly. Lock meetings after intended participants join. Take security settings like password requirements into account.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    27 views1 page

    Zoom Bombing Mitigations - RV2

    Uploaded by

    irfan dadi
    1) Use passwords, waiting rooms, and lock meetings to control who can join. Disable screen sharing and file transfers to prevent data loss. Mute participants and turn off annotations. 2) Be aware of what is visible on your camera feed before meetings start. Remove confidential documents and consider using a virtual background. Keep your microphone muted until speaking. 3) Update Zoom clients and do not post meeting IDs publicly. Lock meetings after intended participants join. Take security settings like password requirements into account.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    B mbing Mitigations

    Control
    Screen Sharing Activate a
    Turn it off or lock down who
    Waiting Room
    can screen share in The waiting room
    advanced settings will stop any new
    users from entering
    a meeting without
    Managing Participants first being accepted
    by the host.
    • Allow only signed in users to join a • Use the “on-hold” function to pause a
    meeting, forcing the user to have a participant. They will not see or hear
    Zoom account (they are still free anything whilst on-hold.
    to create).
    • Disable Video for participants.
    • Lock the meeting, stopping anyone
    • Mute all participants, doesn’t stop
    else from joining, this would not stop
    anyone who was already in.
    them from hearing you. Admin Settings
    • Turn off file transfer, a wise idea to to look at:
    • Activate a password on all meetings,
    stop any DLP loss. • Require password for
    meaning that an attacker would need
    • Turn off annotation, prevents any participants joining via phone
    to successfully brute force the Meeting
    ID and a 6 digit passcode. potentially embarrassing on screen • Mask phone number in the
    drawings. participants list (will hide most of
    • Kick unknown users and they will
    • Disable private chat between users. the phone number)
    not be able to re-join the same meeting.
    • Show a “join from your browser”
    link (allows access from a web
    Disable recordings Be aware of what’s on camera browser to join the meeting)
    Unless you wish to allow Remove any confidential documents
    participants to record the ZOOM that may be in view before • Only authenticated users can
    meeting, this option PRIVACY the meeting starts, or join meetings (participants must
    should be disabled consider enabling the have been pre-authorised)
    TIPS “Virtual background” feature
    • Sign-in methods (restrict what
    Notify of recordings services you would like to allow
    Keep microphone muted
    Only record the meeting if you
    Turn on microphone only when e.g. Google, Facebook)
    need to, and ensure that you
    you are speaking
    notify all participants beforehand • Require a password (various
    different options)

    How to Secure Your Zoom Meetings


    from Zoom-Bombing Attacks
    Use password in your zoom meeting. Do not share your meeting ID. Each Zoom user is
    When creating a new Zoom meeting, Zoom given a permanent 'Personal Meeting ID' (PMI) that is Security Settings
    will automatically enable the "Require meeting associated with their account. If you give your PMI to
    password" setting and assign a random 6 someone else, they will always be able to check if
    to look at:
    digit password. there is a meeting in progress and potentially join it if • Basic password requirements
    a password is not configured. Instead of sharing your
    Use waiting rooms. Zoom allows the host (the • Enhanced Password Rules
    PMI, create new meetings each time that you will
    one who created the meeting) to enable a
    share with participants as necessary.
    waiting room feature that prevents users from
    entering the meeting without first being Disable participant screen sharing. To prevent Do not post public links to your meetings.
    admitted by the host. your meeting from being hijacked by others, you When creating Zoom meetings, you should
    should prevent participants other than the Host from
    Keep Zoom client updated. The latest Zoom never publicly post a link to your meeting.
    sharing their screen.
    updates enable Meeting passwords by default Be on the lookout for Zoom-themed
    Lock meetings when everyone has joined. If
    and add protection from people scanning for malware. Since the Coronavirus outbreak,
    everyone has joined your meeting and you are not
    meeting IDs. there has been a rapid increase in the number
    inviting anyone else, you should Lock the meeting so
    of threat actors creating malware, phishing
    that nobody else can join.
    scams, and other attacks related to the
    Do not post pictures of your Zoom meetings. If pandemic. This includes malware and adware
    you take a picture of your Zoom meeting than installers being created that pretend to be Zoom
    anyone who sees this picture will be able to see its client installers. To be safe, only download the
    associated meeting ID. This can then be used Zoom client directly from the legitimate Zoom.us
    uninvited people to try and access the meeting. site and not from anywhere else.

    You might also like