SOCNET

Go Back   SOCNET: The Special Operations Community Network > Areas of Expertise > Technology and Communications

Reply
 
Thread Tools Display Modes
  #41  
Old 10 April 2020, 14:06
Trojancd Trojancd is offline
Confirmed User
 
Join Date: Apr 2004
Location: Bad places
Posts: 353
Hangouts

Quote:
Originally Posted by CV View Post
Google has a competing product
Oh duh - hangouts or whatever the named it
__________________
Godfather: Shit, I look good in most outfits.
Trojan: Especially high heels and nylons
Godfather: Not my best look but I can pull it off
Trojan: Well as I tell everyone I meet. Godfather is the only one I know who can pull it off.
Godfather: You should also put that in your Sig line on SocNet, that way you don't have to meet people to get the word out :)
Reply With Quote
  #42  
Old 10 April 2020, 15:26
cj's Avatar
cj cj is offline
Sub Rosa
 
Join Date: Sep 2002
Location: Tampa Bay
Posts: 1,346
Quote:
Originally Posted by CV View Post
Have your co-counsels ask their IT department what is permitted. They should have a solution prepped as per their internal policy.

To add context, this wasn't me tossing shade back to them. IT teams need to facilitate the needs of the business. If they're restricting access to one solution, another should be present. Threats crop up when teams become draconian and incentivize users to go around, thus introducing new risks. TL, DR: they likely have a solution (or should).
Unfortunately, they're not all in one firm. I'm an IT neophyte, so pardon me, but my question should have been: is there a solution (program) that is generally more "acceptable" under "normal" IT policies? So far, we've had to stick with conference calls, but, I see a need upcoming that may require video and potentially desktop viewing. I also understand that most IT departments operate under risk adverse protocols.
__________________
"error of opinion may be tolerated, where reason is left free to combat it." Thomas Jefferson
Reply With Quote
  #43  
Old 10 April 2020, 15:36
CV's Avatar
CV CV is offline
Authorized Personnel
 
Join Date: Apr 2003
Location: US
Posts: 8,823
Quote:
Originally Posted by cj View Post
Unfortunately, they're not all in one firm. I'm an IT neophyte, so pardon me, but my question should have been: is there a solution (program) that is generally more "acceptable" under "normal" IT policies? So far, we've had to stick with conference calls, but, I see a need upcoming that may require video and potentially desktop viewing. I also understand that most IT departments operate under risk adverse protocols.
They do, and bad shops are the ones that cause the business to sacrifice. Check out Google Hangouts, or some of the other options that were mentioned here.
__________________
It's a hipster filter. Keeps your kind out. -Jimbo
Reply With Quote
  #44  
Old 10 April 2020, 16:23
Purple36's Avatar
Purple36 Purple36 is offline
Swimming Upstream
 
Join Date: Nov 2002
Location: East Coast
Posts: 10,101
According to the Cyberwire, Zoom traffic has also been routed through China.
__________________
- Faith involves believing in the veracity of the unprovable and unobservable, whether that consists of religion or theoretical physics, which at the very subatomic level start looking rather similar. -ET1/SS Nuke

- I'm not typing this looking for sympathy, I want you guys to listen to your body and if you see or feel something out of the ordinary going on, get it looked at by a competent Doctor. -OldCrustyBastard
Reply With Quote
  #45  
Old 10 April 2020, 16:34
CV's Avatar
CV CV is offline
Authorized Personnel
 
Join Date: Apr 2003
Location: US
Posts: 8,823
Correct. This is because AWS has regional zones in China. Zoom didn't appropriately geo-fence their medical app/service in that region for supporting remote coronavirus consults. They should be slammed for rushing this to market.
__________________
It's a hipster filter. Keeps your kind out. -Jimbo
Reply With Quote
  #46  
Old 10 April 2020, 16:42
Silverbullet's Avatar
Silverbullet Silverbullet is offline
Administrator
 
Join Date: Aug 2000
Location: Bunker
Posts: 16,404
If anyone thinks Zoom and the Chinese gov aren't connected I have some swampland to sell you.
Reply With Quote
  #47  
Old 10 April 2020, 16:45
CV's Avatar
CV CV is offline
Authorized Personnel
 
Join Date: Apr 2003
Location: US
Posts: 8,823
It seems weird to focus on Zoom when all the big tech firms are in with the Chinese government.
__________________
It's a hipster filter. Keeps your kind out. -Jimbo
Reply With Quote
  #48  
Old 10 April 2020, 17:59
Silverbullet's Avatar
Silverbullet Silverbullet is offline
Administrator
 
Join Date: Aug 2000
Location: Bunker
Posts: 16,404
But not to the people forced into using what amounts to a compromised platform due to current events.

Most of the other big tech firms have been called out before and Zoom has seen an explosion of use, so it makes sense to warn off people now.
Reply With Quote
  #49  
Old 10 April 2020, 19:39
SF_BHT's Avatar
SF_BHT SF_BHT is offline
Been There Done That
 
Join Date: Jun 2007
Location: Escaped from the islands!!!
Posts: 2,191
We received a notice from DOJ directing all subordinate agencies not to use ZOOM because of China. Many were invited in Zoom but had to drop it Immediately. I got a technical read from HQ and it really opened my eyes.
__________________
BTDT Just marking time to Retire again....
Reply With Quote
  #50  
Old 11 April 2020, 18:00
MizzouMP MizzouMP is offline
Confirmed User
 
Join Date: Aug 2015
Location: Fort Hood, Tx
Posts: 187
Quote:
Originally Posted by SF_BHT View Post
We received a notice from DOJ directing all subordinate agencies not to use ZOOM because of China.
Our local NETCOM freaked and sent out a notice about DOD clients not authorized to use it after high usage here.
Reply With Quote
  #51  
Old 14 April 2020, 10:34
CV's Avatar
CV CV is offline
Authorized Personnel
 
Join Date: Apr 2003
Location: US
Posts: 8,823
Related, so didn't think a new thread was needed. This is more bad press for them, but not caused by the last big ball of crap. Credential stuffing is an issue all over the web.

Change your password and enable 2FA, even if you don't plan to use Zoom again.

https://www.bleepingcomputer.com/new...-the-dark-web/

Quote:
Over 500,000 Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free.

These credentials are gathered through credential stuffing attacks where threat actors attempt to login to Zoom using accounts leaked in older data breaches. The successful logins are then compiled into lists that are sold to other hackers.

Some of these Zoom accounts are offered for free on hacker forums so that hackers can use them in zoom-bombing pranks and malicious activities. Others are sold for less than a penny each.
Quote:
The purchased accounts include a victim's email address, password, personal meeting URL, and their HostKey.
__________________
It's a hipster filter. Keeps your kind out. -Jimbo
Reply With Quote
  #52  
Old 14 April 2020, 17:52
nofear's Avatar
nofear nofear is offline
Legal Immigrant
 
Join Date: Aug 2005
Location: MT-bound in 2020
Posts: 3,803
I'm still baffled at this explosion of use of a new platform, when old platforms work just fine?

Skype for Business got me through many an online work conference.
FaceTime video got me through many family chats.

So what's the fascination with Zoom? I'm now seeing fundraising charities using it to coordinate, despite all the warnings about it.
__________________
Farts are funny. If you can't laugh at farts, we can't be friends.
Reply With Quote
Reply

Thread Tools
Display Modes

Our new posting rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



All times are GMT -4. The time now is 02:33.
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2020, vBulletin Solutions Inc.
Socnet.com All Rights Reserved
SOCNET 1996-2020