In a blog post today, Zoom described an upcoming update designed to fix some of its security vulnerabilities. As of Zoom 5.0, calls will be encrypted using AES-GCM 256-bit encryption. Hosts will benefit from new tools to report bad actors and more easily access security settings.
The promise of suspend feature updates working on security seems to have paid off. The company had to take the situation seriously because schools, the US Senate and even Google Zoom prohibited for internal use.
Adding 256-bit AES-GCM encryption is key to Zoom’s security promises. Before, it used TLS encryption, similar to your browser when you connect to a secure site, and it was not end-to-end (e2e) encryption despite the fact that the company said otherwise.
Now it will be e2e, and using one of the strongest encryption protocols available. Additionally, while hosts have had to dig deep into the settings menus to find security options before, the update will provide easy access with a new button on the meeting menu bar.
Zoom also offers tools to report bad actors. In recent days, the act of “Zoomboombing”, in which someone joins an uninvited call just to wreak havoc, is increasing. The tools should help reduce this problem. Zoom also did waiting list function enabled by default in a recent update, which requires the host to approve each person before they can join the call.
Zoom 5.0 will be out by the end of the week, and if you are dependent on the service, you should download it as soon as possible. You can visit Zoom site to check if the update is available and download it.