Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Privacy Security

The Internet is Now Rife With Places Where You Can Organize Zoom-bombing Raids (zdnet.com) 38

The internet is rife with online communities where users can go and share Zoom conference codes and request that pranksters connect and hurl insults, play pornographic material, or make death threats against other participants -- in a practice called Zoom-bombing or a Zoom raid. From a report: ZDNet began tracking the tactic since mid-March when the term was first coined following a TechCrunch article. Ever since then, Zoom-bombing incidents have increased, as articles in major news outlets like the New York Times and the BBC have made the practice a favorite pastime for all the teenagers stuck in their homes during the current coronavirus (COVID-19) quarantines. From a niche prank that started on a derelict Discord channel, Zoom-bombing has now spread to enormous proportions -- being so rampant these days that the FBI sent a nationwide alert last week, urging companies, schools, and universities to take steps to secure their Zoom channels. But as Zoom-bombing became more popular, more pranksters wanted to join on the fun, and more users wanted their friends' Zoom meetings disrupted. And as the old saying goes; where there's a demand, there's always a supply. Over the course of the past week, the number of places on the public internet where you can request a zoom raid from a gang of bored teenagers has exploded.
This discussion has been archived. No new comments can be posted.

The Internet is Now Rife With Places Where You Can Organize Zoom-bombing Raids

Comments Filter:
  • by JustAnotherOldGuy ( 4145623 ) on Thursday April 02, 2020 @02:51PM (#59902056) Journal

    Sounds like a great reason avoid using Zoom.

    • by jmccue ( 834797 )

      Sounds like a great reason avoid using Zoom.

      Sound like a good reason to use zoom, with some mind numbing meetings I have been to, this will at the very least make the meeting end early.

      FWIW, my company dropped zoom a year or 2 ago and went to another product due to encryption not being there. But zoom's Linux client worked great, the product we use now does not have a Linux client and Linux people are stuck with a firefox/chrome front end.

      • Re:Sounds like... (Score:4, Insightful)

        by tlhIngan ( 30335 ) <slashdot.worf@net> on Thursday April 02, 2020 @04:32PM (#59902494)

        FWIW, my company dropped zoom a year or 2 ago and went to another product due to encryption not being there. But zoom's Linux client worked great, the product we use now does not have a Linux client and Linux people are stuck with a firefox/chrome front end.

        Most clients aren't much different - if you have a web client, you can turn it into an app using node.js and Electron.

        And I don't see what's wrong with having a web client. Saves installing crap on the computer.

    • You obviously don't know just how utterly BORING the average meeting is, or you'd consider this an ad for Zoom.

      • You obviously don't know just how utterly BORING the average meeting is, or you'd consider this an ad for Zoom.

        You're right- I avoid meetings at all costs, I'll do anything to get out of them. I never have anything to contribute or talk about because that's not something that my job usually calls for.

        I once called in sick with "Potato Famine" to get out of a meeting. Another time I said my popliteal fossa was infected and nobody questioned it. Or I say that I went to the wrong room and was asked by some C-level tyrant to give an impromptu presentation on the whatchamacallit widget. If they schedule me in to a meetin

    • And just in the past few days someone was trying to convince me to install and use it. I remained skeptical and never did.

      I'm not saying I'm smart or anything, but I'm just not incredibly stupid either.

      • I'm not saying I'm smart or anything, but I'm just not incredibly stupid either.

        My dear old daddy used to say "Half the trick to being smart is not being stupid."

        I miss him. He never should have tried making toast in the shower.

  • But you do need to use them. Require people sign in to join your meeting - and, if practical, require they be a member of your Zoom organizational unit. Make use of the waiting room feature, if you can’t limit who can log in.

    • by mark-t ( 151149 )
      Or, do what we do at work, and require a password to join. Only people who were invited to join know the password.
      • by kalpol ( 714519 )
        Yeah this isn't rocket science. Every case I heard of personally was of a public meeting.
      • by Anonymous Coward

        Doesn't work if one of your employees shares the password online.

        • by Solandri ( 704621 ) on Thursday April 02, 2020 @04:23PM (#59902462)
          If that's the case, that's a design fail by Zoom. Passwords should be unique for each participant, and only allow a single user entry. If you share your password and someone else uses it to join the conference before you do, you yourself can't get in. When the person organizing the meeting sends out invites, it should include a unique password for each invitee.
          • by torkus ( 1133985 ) on Thursday April 02, 2020 @05:23PM (#59902702)

            If that's the case, that's a design fail by Zoom. Passwords should be unique for each participant, and only allow a single user entry. If you share your password and someone else uses it to join the conference before you do, you yourself can't get in. When the person organizing the meeting sends out invites, it should include a unique password for each invitee.

            Aaaannnnd this is why you aren't designing massively popular video chat/conferencing tools. That's great in theory...on the surface. It also completely falls apart the moment you try and implement it: No standard calendar app (exchange/o365/gsuite) let's you easily send each participant a unique invite so you have to build an entire secondary calendar app. Been there, tried to implement that for polycom rooms. All it did was cause endless confusion and conflicts that resulted in the rooms not being used. If I have to go ask the meeting organizer to invite people instead of forwarding an invite on? lol...good luck running a business without going back to the day of secretaries to maintain your calendar for every manager ever.

              GGP (or whatever) had it right: require registered participants only and you cut out the VAST majority. Generate a unique room ID for each meeting helps more and add a per-meeting password will cut that down to almost nothing...and narrow down who could have 'leaked' the invite.

            And if that STILL isn't enough, lock it down to your org only and use special accounts for external participants.

            There's no PERFECT fix ... but you can eliminate the VAST majority pretty darn easily.

          • by khchung ( 462899 )

            If that's the case, that's a design fail by Zoom. Passwords should be unique for each participant, and only allow a single user entry. If you share your password and someone else uses it to join the conference before you do, you yourself can't get in. When the person organizing the meeting sends out invites, it should include a unique password for each invitee.

            And that is why Zoom got so popular and others like Webex got left behind.

            I guess you have never frequently used these video conferencing apps, "frequent" as in multiple meetings every day.

            I have lost count of the number of times where one or some of the participants:
            * did not remember the URL and have someone else send them immediately
            * had PC hang on them and have to immediately call in from a different device
            * call in from multiple device, one to show the shared screen, another one for audio
            * lost the se

  • G.I.F.T (Score:4, Insightful)

    by Nidi62 ( 1525137 ) on Thursday April 02, 2020 @02:57PM (#59902090)

    Gabe and Tycho need to update their Greater Internet Fuckwad Theory to include a boredom variable.

  • You get what you pay for.

  • You either get simplicity or security not both.
    • by PPH ( 736903 )

      Perhaps businesses shouldn't be using this. Never mind the obscene language or porn, what do you do if a competitor gets your meeting code, opens a session and just site there listening quietly?

      • by kalpol ( 714519 )
        Perhaps, you know, people should turn on the password feature for their meetings instead of making them public. This is not a new concept, we've had conference PINs since conferencing was a thing.
  • It is just necessary to add this [youtube.com] to the discussion.

  • by sacrilicious ( 316896 ) <qbgfynfu.opt@recursor.net> on Thursday April 02, 2020 @03:48PM (#59902292) Homepage

    And as the old saying goes; where there's a demand, there's always a supply.

    There is no such "old saying", nor a new saying, and the "always a supply" part is not true, nor even sort of true-ish, and goes beyond being useless to actually being a dangerous fallacy. If it were true, no need would ever go unmet, nobody would starve... there'd be a vaccine for covid...

    Yes the words "supply" and "demand" do exist, and they often are talked about in the same context. But this inventing bullshit and labeling it "the old phrase" needs to be called out.

  • by sconeu ( 64226 ) on Thursday April 02, 2020 @03:51PM (#59902308) Homepage Journal

    This is why we can't have nice things.

  • ... for the Zumba [wikipedia.org] raids.
  • Only way to stop the excessive trolling.
  • by MobyDisk ( 75490 ) on Thursday April 02, 2020 @07:28PM (#59903226) Homepage

    I've used web conferencing systems like WebEx, Go2Meeting, and Skype since Y2K and they are all vulnerable to this same thing. You could just forward the invite link and *bam* that person is in the meeting. I don't see why the hate for Zoom specifically, as though it is a a problem they introduced.

As of next Thursday, UNIX will be flushed in favor of TOPS-10. Please update your programs.

Working...