Zoombombing or Zoom raiding [1] is the unwanted, disruptive intrusion, generally by Internet trolls, into a video-conference call. In a typical Zoombombing incident, a teleconferencing session is hijacked by the insertion of material that is lewd, obscene, or racist in nature, typically resulting in the shutdown of the session or the removal of the troll. The term is especially associated with and is derived from the name of the Zoom videoconferencing software program, but it has also been used to refer to the phenomenon on other video conferencing platforms. The term became popularized in 2020 when the COVID-19 pandemic forced many people to stay at home, and videoconferencing came to be used on a large scale by businesses, schools, and social groups.
Zoombombing has caused significant issues in particular for schools, companies, and organizations worldwide. Such incidents have resulted in increased scrutiny on Zoom as well as restrictions on usage of the platform by educational, corporate, and governmental institutions globally. In response, Zoom, citing the sudden influx of new users due to the COVID-19 pandemic, took measures to increase security of its teleconferencing application. Incidents of Zoombombing have prompted law enforcement officers in various countries to investigate such cases and file criminal charges for those responsible.
The term "Zoombombing" is derived from the teleconferencing application Zoom, [2] though the term has also been used in reference to similar incidents on other teleconferencing platforms, such as WebEx or Skype. [3] The increased use of Zoom during the COVID-19 pandemic as an alternative to face-to-face meetings resulted in widespread exposure to hackers and Internet trolls, who exploit and work around the application's security features. [2] In various forums such as Discord and Reddit, efforts have been coordinated to disrupt Zoom sessions, while certain Twitter accounts advertise meeting ids and passwords or meeting links (allowing users to instantly join a Zoom meeting instead of entering the credentials required to access a meeting) for sessions that were vulnerable to being joined without authorization. [4] At educational institutions, some students were "actively asking strangers to Zoombomb or 'Zoom raid' their virtual classrooms to spice up their isolated lessons" and facilitating the raids by sharing passwords with the raiders. [5] CNET pointed out that simple Google searches for URLs that include "Zoom.us" could bring up conferences that are not password protected, and that links within public pages can allow anyone to join. [6] Hackers and trolls also look for easy targets such as unprotected or underprotected "check-in" meetings in which organizations meet with their employers or clients remotely. [7]
While a Zoom session is in progress, unfamiliar users show up and hijack the session by saying or showing things that are lewd, obscene, or racist in nature. [8] The compromised Zoom session is then typically shut down by the host. [2] [9] Many of those successful in disrupting sessions have posted video footage of those incidents to social media and video sharing platforms such as TikTok and YouTube. [8] [ further explanation needed ]
While it is believed Zoombombing attacks are mainly orchestrated by external hackers and trolls, many are also orchestrated internally from within their respective organization or entity. [10] Some view Zoombombing as a continuation of cyberbullying by teenagers, particularly after schools were shut down due to the pandemic. [11]
Zoombombing has caused a number of problems for schools and educators, with unwanted participants posting lewd content to interrupt learning sessions. [9] [12] [13] Some schools had to suspend using video conferencing altogether. [14] The University of Southern California called Zoombombing a type of trolling and apologized for "vile" events that interrupted "lectures and learning." [15] Zoombombing has prompted colleges and universities to publish guides and resources to educate and bring awareness to their students and staff about the phenomenon. [16] Zoombombing has left online lectures vulnerable to the intrusion of people looking to inflict harm. These crimes have brought attention not only to the lack of security on videoconferencing platforms, but also the lack in the universities. According to an article from The Guardian , the University of Warwick, in the midst of a rape-chat scandal, received criticisms for its weak cybersecurity. [17]
Zoombombing affected twelve-step programs such as Alcoholics Anonymous and Narcotics Anonymous and other substance abuse and addiction recovery programs who were forced to switch to online meetings. Concerns arise from causing undue stress to an already vulnerable population and video recording which can break anonymity. [18] [19] Some bombers reference the drug-of-choice for recovery members, such as alcohol, in an attempt to emotionally trigger the participants of the meeting. [18]
The problem reached such prominence that the United States Federal Bureau of Investigation (FBI) warned of video-teleconferencing and online classroom hijacking, which it called "Zoom-bombing." [20] [21] The FBI advised users of teleconferencing software to keep meetings private, require passwords or other forms of access control such as "waiting rooms" to limit access only to specific people, and limiting screen-sharing access to the meeting host only. [20] Given the number of incidents of Zoombombing, New York's attorney general initiated an inquiry into Zoom's data privacy and security policies. [22] U.S. Senator Sherrod Brown (D-OH) asked the Federal Trade Commission to investigate into the matter, accusing Zoom of engaging in deceptive practices regarding user privacy and security. [23]
Amid concerns about Zoombombing, various organizations banned the use of Zoom. In April 2020, Google banned the use of Zoom on its corporate computers, directing employees to instead use its video chat app Google Duo. [24] The use of Zoom was also banned by SpaceX, Smart Communications, NASA, and the Australian Defence Force. [24] The Taiwanese and Canadian governments banned Zoom for all government use. [25] The New York City Department of Education prohibited all its teachers from using the platform with students, and the Clark County School District in Nevada disabled access to Zoom to its staff. [26] Singapore's Ministry of Education briefly banned all teachers within the country from using Zoom [27] [28] before lifting the ban three days later, adding extra security features. [29] Some Zoombombers have shared their side of the story, claiming they aren't trying to cause harm. They claim it is a form of protest in response to the extensive amount of work given from teachers. Not all incidents are malicious, as many have shared some new pop culture, such as memes and TikToks, to bring some relief and fun during the pandemic. [1]
Zoom CEO Eric Yuan made a public apology, saying that the teleconferencing company had not anticipated the sudden influx of new consumer users and stating that "this is a mistake and lesson learned." [30] [31] In response to the concerns, Zoom has published a guide on their blog on how to avoid these types of incidents. [32] On April 7, 2020, Zoom implemented user experience and security updates to the application. Such updates include a more visible "Security" icon for users to see and use, suppression of meeting ID numbers, [31] and a change in the default settings to require passwords and waiting rooms for sessions. [33] On April 8, 2020, Zoom announced that it had formed a council of chief information security officers from other companies to share ideas on best practices, and that it had hired Alex Stamos, former chief security officer of Facebook, as an adviser. [34] Zoom released its 5.0 version in April 2020 with security features that include AES 256-bit GCM encryption, passwords by default, and a feature to report suspicious users to its Trust and Safety Team for possible misuse. [35] [36] In May 2020, Zoom announced it had temporarily disabled its Giphy (frequently used as a tactic in Zoombombing) integration until security concerns could be properly and fully addressed. [37] On July 1, 2020, Zoom stated it had released 100 new safety features over the past 90 days, including end-to-end encryption for all users, turning on meeting passwords by default, giving users the ability to choose which data centers calls are routed from, consulting with security experts, forming a CISO council, an improved bug bounty program, and working with third parties to help test security. [38] [39]
National authorities worldwide warned of possible charges against people engaging with Zoombombing. [40] [41] On April 8, 2020, a teen in Madison, Connecticut, was arrested for computer crime, conspiracy, and disturbing the peace following a Zoombombing incident involving online classes at Daniel Hand High School; police also identified another teen involved in the incident. [42] In San Francisco, a man was arrested after being traced to pornographic videos that were streamed on Zoom. [43] As of May 2020, the FBI has received 195 incidents of Zoombombing involving child abuse, [44] while the United Kingdom's National Crime Agency has reported more than 120 such cases. [45]
St. Paulus Lutheran Church in San Francisco filed a class-action lawsuit against Zoom after one of its Bible study classes was "Zoombombed" on May 6, 2020. [46] The church alleged that Zoom "did nothing" when it tried to reach out to the company. [47]
In 2022, an online event hosted by the Italian Senate's Movimento 5 Stelle and broadcast live to Senato della Repubblica was interrupted by roughly a minute of a 3D animated Final Fantasy VII pornographic parody, displaying the character Tifa Lockhart in the middle of sexual intercourse. [48] [49] Overlapping the content's original audio was a man speaking English with a thick Italian accent stating, "I used to be a sex offender, but now I am a kindergarten teacher." [50]
Brian Adams, a man from Paintsville, Kentucky, faced multiple federal charges after he interrupted an elementary school's video conference class during the COVID-19 pandemic with a digital racist threat. He allegedly crashed a class Zoom conference on October 14, 2020 and targeted the Laureate Academy Charter School, whose student population is about 67% Black, because of its racial demographics. [51]
In 2020, livestreamer Muudea Sedik, better known as Twomad, gained popularity for his Zoom bombings. Sedik would request Zoom meeting links or passwords from his followers on social media, and would broadcast the subsequent invasions live. Sedik's antics made him a popular subject for various Internet memes, particularly among Generation Z. [52]
Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or networks. These crimes involve the use of technology to commit fraud, identity theft, data breaches, computer viruses, scams, and expanded upon in other malicious acts. Cybercriminals exploit vulnerabilities in computer systems and networks to gain unauthorized access, steal sensitive information, disrupt services, and cause financial or reputational harm to individuals, organizations, and governments.
In computing, SQL injection is a code injection technique used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution. SQL injection must exploit a security vulnerability in an application's software, for example, when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and unexpectedly executed. SQL injection is mostly known as an attack vector for websites but can be used to attack any type of SQL database.
Crimeware is a class of malware designed specifically to automate cybercrime.
Internet censorship in India is done by both central and state governments. DNS filtering and educating service users in suggested usages is an active strategy and government policy to regulate and block access to Internet content on a large scale. Measures for removing content at the request of content creators through court orders have also become more common in recent years. Initiating a mass surveillance government project like Golden Shield Project is an alternative that has been discussed over the years by government bodies.
The Internet has a long history of turbulent relations, major maliciously designed disruptions, and other conflicts. This is a list of known and documented Internet, Usenet, virtual community and World Wide Web related conflicts, and of conflicts that touch on both offline and online worlds with possibly wider reaching implications.
A broadcast signal intrusion is the hijacking of broadcast signals of radio, television stations, cable television broadcast feeds or satellite signals without permission or licence. Hijacking incidents have involved local TV and radio stations as well as cable and national networks.
4chan is an anonymous English-language imageboard website. Launched by Christopher "moot" Poole in October 2003, the site hosts boards dedicated to a wide variety of topics, from video games and television to literature, cooking, weapons, music, history, anime, fitness, politics, and sports, among others. Registration is not available and users typically post anonymously. As of 2022, 4chan receives more than 22 million unique monthly visitors, of which approximately half are from the United States.
Anonymous is a decentralized international activist and hacktivist collective and movement primarily known for its various cyberattacks against several governments, government institutions and government agencies, corporations and the Church of Scientology.
TeamViewer is a German remote access and remote control computer software, allowing maintenance of computers and other devices. It was first released in 2005, and its functionality has expanded step by step. TeamViewer is proprietary software that requires registration and is free of charge for non-commercial use. It has been installed on more than two billion devices. TeamViewer is the core product of developing company TeamViewer AG.
Andrew Alan Escher Auernheimer, best known by his pseudonym weev, is an American computer hacker and professional Internet troll. Affiliated with the alt-right, the Southern Poverty Law Center has described him as being a neo-Nazi, white supremacist, and antisemitic conspiracy theorist. He has used many aliases when he has contacted the media, but most sources state that his real first name is Andrew.
The Gay Nigger Association of America (GNAA) was an internet trolling group. They targeted several prominent websites and internet personalities including Slashdot, Wikipedia, CNN, Barack Obama, Alex Jones, and prominent members of the blogosphere. They also released software products, and leaked screenshots and information about upcoming operating systems. In addition, they maintained a software repository and a wiki-based site dedicated to internet commentary.
The 2012 LinkedIn hack refers to the computer hacking of LinkedIn on June 5, 2012. Passwords for nearly 6.5 million user accounts were stolen. Yevgeniy Nikulin was convicted of the crime and sentenced to 88 months in prison.
Zoom Video Communications, Inc. is a communications technology company headquartered in San Jose, California. It provides videotelephony and online chat services through a cloud-based peer-to-peer software platform used for video communications (Meetings), messaging (Chat), voice calls (Phone), conference rooms for video meetings (Rooms), virtual events (Events) and contact centers, and offers an open platform allowing third-party developers to build custom applications on its unified communications platform. The company was founded in 2011 by Eric Yuan, a former Cisco engineer and executive. It launched its software in 2013.
Pornhub is a Canadian-owned internet pornography video-sharing website, one of several owned by adult entertainment conglomerate Aylo. As of December 2023, Pornhub is the 14th most visited website in the world and the second most visited adult website after XVideos.
Google Meet is a video communication service developed by Google. It is one of two apps that constitute the replacement for Google Hangouts, the other being Google Chat. It replaced the consumer-facing Google Duo on November 1, 2022, with the Duo mobile app being renamed Meet and the original Meet app set to be phased out.
Zoom, also called Zoom Meetings, is a proprietary videotelephony software program developed by Zoom Video Communications. The free plan allows up to 100 concurrent participants, with a 40-minute time restriction. Users have the option to upgrade by subscribing to a paid plan, the highest of which supports up to 1,000 concurrent participants for meetings lasting up to 30 hours.
On July 15, 2020, between 20:00 and 22:00 UTC, 130 high-profile Twitter accounts were reportedly compromised by outside parties to promote a bitcoin scam. Twitter and other media sources confirmed that the perpetrators had gained access to Twitter's administrative tools so that they could alter the accounts themselves and post the tweets directly. They appeared to have used social engineering to gain access to the tools via Twitter employees. Three individuals were arrested by authorities on July 31, 2020, and charged with wire fraud, money laundering, identity theft, and unauthorized computer access related to the scam.
Account pre-hijacking attacks are a class of security exploit related to online services. They involve anticipating a user signing up for an online service and signing up to the service in their name, and then taking over their account when they attempt to register it themselves. The attack relies on confusion between accounts created by federated identity services and accounts created using e-mail addresses and passwords, and the failure of services to resolve this confusion correctly.
"Zoombombing" or "Zoom raiding" by uninvited participants have become frequent
people turn to video-teleconferencing (VTC) platforms to stay connected in the wake of the COVID-19 crisis, reports of VTC hijacking (also called "Zoom-bombing") are emerging
Over the last few weeks, internet trolls have exploited a Zoom screen-sharing feature to hijack meetings and do things like interrupt educational sessions or post white supremacist messages to a webinar on anti-Semitism — a phenomenon called "Zoombombing." [...] "We appreciate the New York attorney general's engagement on these issues
{{cite web}}
: CS1 maint: bot: original URL status unknown (link)