Zoom Lied about End-to-End Encryption
The facts aren’t news, but Zoom will pay $85M—to the class-action attorneys, and to users—for lying to users about end-to-end encryption, and for giving user data to Facebook and Google without consent.
The proposed settlement would generally give Zoom users $15 or $25 each and was filed Saturday at US District Court for the Northern District of California. It came nine months after Zoom agreed to security improvements and a “prohibition on privacy and security misrepresentations” in a settlement with the Federal Trade Commission, but the FTC settlement didn’t include compensation for users.
JonKnowsNothing • August 5, 2021 7:11 AM
@All
In a MSM report on the Zoom settlement was this interesting item:
While the top of the issue is the end to end encryption fallacy, a take away are the SDKs from Facebook and Google.
Loads of programs/apps use these SDKs and nearly every device that has an App in the Store are developed using one or more SDKs. SDKs are cherry baskets with promises of Here’s How To Do Stuff EZPZ . Yet how many are really vetted?
Like passing parameters to a routine that someone else has written, you have to Trust that the function call and parameters are Working As Intended. Only if your output is wonky do you start to look:
But on the backside what the SDKs are doing, no one knows. Zoom found out by claiming more than they should have but SDKs are everywhere. In this case the Facebook SDK is part of the problem and Zoom is not the only one using it.
===
ht tps://arstechnica.com/tech-policy/2021/08/zoom-to-pay-85m-for-lying-about-encryption-and-sending-data-to-facebook-and-google/
(url fractured to prevent autorun)