Is your video conference solution safe? It’s up to you, to set it up safe.
For as long as recording technology has existed it has been used for espionage. From the ever-so-stealthy tape recorders (often hidden in books in James Bond films) all the way top the wires used by police agencies to catch a criminal in the act, there is no better way of foiling your enemy than listening to him when he doesn’t think he is being heard.
These days however it is not just living people you need to worry about. It is often said that your computers webcam can be accessed even when you’re not using it; a terrifying prospect for many and considering how long people have been able to listen in on phone calls, are video conferences really that safe? Video conferences are now an important and effective way for modern businesses to communicate. Instantaneous communication with anywhere else on Earth is amazing, but being able to visually gauge the reaction of the person you are talking to make it one of the most powerful tool in any company’s arsenal.
But what if you are being looked in on? If someone watches in on a business deal than they can make money at your expense, work to crush your plans or even make your move before you do. So how safe are they? Hackers like HD Moore say not very! Moore, the creator of Metasploit, has managed to hack his way into the offices of law firms, courtrooms and even the boardroom of Goldman Sachs with ease, suggesting that peeping toms might have more power than previously thought. While this may seem fairly reminiscent of Back to the Future II there isn’t really too much to worry about at home. Moore says that the reasons these companies fail so spectacularly at securing their cameras is because they set them up outside of their company’s network firewalls, meaning easy access to those with prying eyes and hacking know-how. At home in fact, it is not the outside hackers you should worry about but the companies themselves.
And beyond the board room?
Skype has previously stated that it is able to gain access to cameras even when not in video call and a simple Google search can turn up thousands of programs designed purely to hack into webcams without people knowing. It’s not just the anonymous hackers you have to consider. In the early 2000s there was controversy over the US government’s plans to allow phone hacking to counter terrorism. Last year the US government set up an agency called the DCAC (Domestic Communications Assistant Centre), collaboration between the FBI, the DEA and the US Marshall’s Service which is specifically designed to enable wire-tapping on wireless and internet conversations. A court order is required to allow the agency to listen in on their targets (the same as with phones) but this time there was very little controversy at all.
So what conclusion can we come too? Is video conferencing safe for corporations or people at home? While there is plenty of evidence to the contrary I would say yes. If you have the right firewalls, security and managed video conferencing infrastructure then it is incredibly difficult for any peeping toms to get it and if anybody is really that determined to listen in to your conversations then video conferencing is just another tool in their box. If you learn HD Moore’s lessons and don’t underestimate the importance of online security, your company’s secrets should be safe. Are you guys convinced by Moore’s Argument?
This post is also available in: German