{"id":2984,"date":"2020-04-09T16:26:04","date_gmt":"2020-04-09T16:26:04","guid":{"rendered":"http:\/\/www.blackopspartners.com\/?p=2984"},"modified":"2020-04-09T16:26:04","modified_gmt":"2020-04-09T16:26:04","slug":"millions-of-americans-using-zoom-which-sends-some-data-to-china","status":"publish","type":"post","link":"https:\/\/blackopspartners.com\/millions-of-americans-using-zoom-which-sends-some-data-to-china\/","title":{"rendered":"Millions of Americans Using \u2018Zoom,\u2019 Which Sends Some Data to China"},"content":{"rendered":"\n

Video-conferencing app Zoom, which has surged in popularity amid the global CCP virus pandemic, is facing mounting privacy and security concerns after research reports and the CEO\u2019s disclosure revealed\u00a0its encryption keys were being transmitted to servers in\u00a0China<\/a>\u00a0in some cases.<\/p>\n\n\n\n

The backlash reached a crescendo recently with Taiwan\u2019s recent banning of any government use of Zoom, citing security concerns. The April 7 measure marked the first time a government had imposed a formal action against the company.<\/p>\n\n\n\n

In the United States, a similar picture is emerging. Experts told The Epoch Times that concerns related to Zoom\u2019s alleged ties to the Chinese Communist Party are absolutely warranted.<\/p>\n\n\n\n

Watchdog group Citizen Lab recently examined Zoom\u2019s encryption during multiple test calls in North America, in which they found keys for encrypting and decrypting meetings were \u201ctransmitted to servers in Beijing.\u201d The report stated that Zoom used \u201cnon-industry-standard cryptographic techniques with identifiable weaknesses.\u201d<\/p>\n\n\n\n

\u201cAn app with easily-identifiable limitations in cryptography, security issues, and offshore servers located in China [that] handle meeting keys, presents a clear target to reasonably well-resourced nation-state attackers, including the People\u2019s Republic of China,\u201d the authors wrote in their April 3 report<\/a>.<\/p>\n\n\n\n

The app has gained immense popularity in recent weeks as millions of Americans under lockdown are required to work from home. Headquartered in San Jose, California, Zoom reached more than\u00a0200 million daily<\/a>\u00a0users worldwide in March, a massive increase from the 10 million daily participants at the end of December.<\/p>\n\n\n\n

Zoom also appears to own three companies in China, the report states, adding that according to a recent SEC filing, the company, through its Chinese affiliates, \u201cemploys at least 700 employees in China that work in \u2018research and development.’\u201d This arrangement, researchers noted,<\/a> \u201cmay make Zoom responsive to pressure from Chinese authorities.\u201d<\/p>\n\n\n\n

Casey Fleming, chairman and CEO of intelligence and security strategy firm BlackOps Partners, said Americans should be very wary of any software or hardware created or manufactured in China.<\/p>\n\n\n\n

\u201cThe Chinese Communist Party (CCP) completely controls all production and exploits every opportunity to steal intellectual property and innovation through every means possible,\u201d Fleming told The Epoch Times. \u201cEconomic espionage is part of the CCP\u2019s grand strategy of Hybrid Competition (Warfare) to defeat the United States, capitalism, and democracy to ultimately control the world.<\/p>\n\n\n\n

\u201cThe world is waking up to how ruthless and evil the Chinese Communist Party really is and their true intentions,\u201d he said. \u201cRecent CCP actions and statements reveal this point. The CCP is very much like a nefarious and dysfunctional crime family running a nation-state.\u201d<\/p>\n\n\n\n

The Epoch Times reached out to Zoom for comment but didn\u2019t receive a response.<\/p>\n\n\n\n

Meanwhile, the Department of Homeland Security said in a positively worded memo that the company had been responsive to the concerns raised about its software,\u00a0according to Reuters<\/a>. The memo was\u00a0recently distributed to top government cybersecurity officials.<\/p>\n\n\n\n

Growing Scrutiny<\/h2>\n\n\n\n

Zoom CEO Eric Yuan admitted in an April 3 blog post<\/a> that the company \u201cmistakenly\u201d added servers for the app in China.<\/p>\n\n\n\n

\u201cIn our urgency to come to the aid of people around the world during this unprecedented pandemic, we added server capacity and deployed it quickly\u2014starting in China, where the outbreak began,\u201d Yuan said. \u201cIn that process, we failed to fully implement our usual geo-fencing best practices. As a result, it is possible certain meetings were allowed to connect to systems in China, where they should not have been able to connect.\u201d<\/p>\n\n\n\n

In February, to handle an increase in demand, Yuan said Zoom added two of its Chinese data centers \u201cto a lengthy whitelist of backup bridges, potentially enabling non-Chinese clients to\u2014under extremely limited circumstances\u2014connect to them (namely when the primary non-Chinese servers were unavailable).\u201d<\/p>\n\n\n\n

He added that Zoom \u201cimmediately took the mainland China data centers off of the whitelist of secondary backup bridges for users outside of China\u201d after learning about the oversight.<\/p>\n\n\n\n

In an\u00a0October 2017 interview with Medium<\/a>, Yuan said he decided to move to the United States in the mid-1990s because of the growing internet wave, which he said had not taken off in China. He said he got his U.S. visa on his ninth attempt.<\/p>\n\n\n\n

\u201cThe first time I applied for a U.S. visa, I was rejected,\u201d Yuan said. \u201cI continued to apply again and again over the course of two years, and finally received my visa on the ninth try.\u201d<\/p>\n\n\n\n

The FBI also warned about Zoom\u2019s security vulnerabilities in a March post<\/a>saying there were reports of video calls being hacked with \u201cpornographic and\/or hate images, and threatening language.\u201d The Justice Department also issued a similar release.<\/a><\/p>\n\n\n\n

Experts said the criticisms they have seen against the app are similar to the ones about the Chinese-owned video-sharing app TikTok, which is facing a national security review.<\/a><\/p>\n\n\n\n

On April 3, a group of 19 House lawmakers sent a letter<\/a> to Yuan asking him to \u201cshed light\u201d on the company\u2019s data collection practices, including information on attendee attention tracking, cloud recording, and automatic transcriptions of conferences.<\/p>\n\n\n\n

And according to The New York Times<\/a>, New York Attorney General Letitia James asked Yuan in a letter about the new security measures that Zoom has put in place. The New York City Department of Education has also banned<\/a>teachers from using the app.<\/p>\n\n\n\n

Zoom is dealing with a heavy load of backlash against a \u201cmulti-faceted and often mind-boggling shortsightedness with regard to user privacy and the overall security of its platform,\u201d Attila Tomaschek, data privacy expert at ProPrivacy, told The Epoch Times.<\/p>\n\n\n\n

\u201cBeijing theoretically could demand that the encryption keys for those calls be handed over for decryption by Chinese authorities, allowing them full access to the contents of those calls and the ability to listen in on supposedly private conversations,\u201d he said.<\/p>\n\n\n\n

Meanwhile, Zoom was hit with a class-action lawsuit<\/a> by shareholder Michael Drieu, who accused the company of overstating its privacy standards and failing to disclose that its service wasn\u2019t end-to-end encrypted.<\/p>\n\n\n\n

Also, Google on April 8 banned the use of Zoom on employee computers, citing security concerns. A spokesperson told The Hill<\/a> the move was part of Google\u2019s longstanding policy of not allowing the use of \u201cunapproved apps for work.\u201d<\/p>\n\n\n\n

The fact that Zoom effectively gave Chinese authorities access to the call data of users in North America, well outside the normal reach of the communist regime, \u201craises the alarm to a whole new level,\u201d Tomaschek said.<\/p>\n\n\n\n

\u201c[Zoom] represents a particularly attractive target for government agencies in gathering intelligence,\u201d he added. \u201cWhen the company quite literally hands over the keys to an authoritarian government, it presents massive issues with regard to user trust and its overall security practices.\u201d<\/p>\n\n\n\n

Read more at The Epoch Times<\/a>.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

Video-conferencing app Zoom, which has surged in popularity amid the global CCP virus pandemic, is facing mounting privacy and security concerns after research reports and the CEO\u2019s disclosure revealed\u00a0its encryption keys were being transmitted to servers in\u00a0China\u00a0in some cases. The backlash reached a crescendo recently with Taiwan\u2019s recent banning of any government use of Zoom, […]<\/p>\n","protected":false},"author":2,"featured_media":2986,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[6,10],"tags":[],"acf":[],"_links":{"self":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/posts\/2984"}],"collection":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/comments?post=2984"}],"version-history":[{"count":0,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/posts\/2984\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/media?parent=2984"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/categories?post=2984"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/tags?post=2984"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}