To the list of new words, phrases and slang we've all had to learn in recent days, add this: "Zoom-bombing."
It refers to the disruption or takeover of a videoconference taking place on the Zoom platform. It happens when a link to a Zoom video or audio teleconference is public -- necessary when the conference is discussing public business, as some government bodies have tried to have online meetings while maintaining social distance -- and trolls descend on it.
In Grosse Ile Monday night, the township board of trustees was holding its first online meeting when it was Zoom-bombed during the public-comment portion, according to The Detroit News:
"Should I avoid Chinese people?" the first public commenter asked, Budny said, and Loftus cut him off.
The second man mentioned Asian massage parlors, and Loftus cut him off too.
After the third offered his name as "Dan D---head," Budny said, Loftus ended public comment and called the meeting to a close.
In New York, an online Alcoholics Anonymous meeting was disrupted by a participant "shouting misogynistic and anti-Semitic slurs, along with crass references to drinking."
The Kalamazoo City Commission had the same problem Monday night. In Chicago, Zoom-bombers put up pornographic images during an online press conference.
Earlier this week, the FBI's Boston field office issued a press release warning of the practice and offered tips to head off bombers before they can take over:
Do not make meetings or classrooms public. In Zoom, there are two options to make a meeting private: require a meeting password or use the waiting room feature and control the admittance of guests.
Do not share a link to a teleconference or classroom on an unrestricted publicly available social media post. Provide the link directly to specific people.
Manage screensharing options. In Zoom, change screensharing to “Host Only.”
Ensure users are using the updated version of remote access/meeting applications. In January 2020, Zoom updated their software. In their security update, the teleconference software provider added passwords by default for meetings and disabled the ability to randomly scan for meetings to join.
Lastly, ensure that your organization’s telework policy or guide addresses physical and information security.