To Zoom, or Not to Zoom? Staying Safe While Videoconferencing

It’s not exactly a new word, but “Zoom” has taken on an entirely new meeting since the beginning of the Coronavirus pandemic and the widespread stay-at-home orders engendered by public health concerns. The Zoom videoconferencing app has become almost as pervasive as the virus itself; millions of workers, friends, and family members use it daily to communicate in as close to “in-person” fashion as we can get under the social distancing regime.

Naturally, any time there’s a technological advance that becomes hugely popular, hackers are not far behind. In the case of Zoom, that has resulted in “Zoom bombers”: people who intrude on Zoom meetings that they have no business in, usually to disrupt with objectionable video or audio content. There have also been cases where hackers have utilized Zoom to obtain users’ login credentials and other information or used the Zoom platform as a vehicle for planting malware or viruses on users’ computers or servers.

A friend of mine who works at a university reports that the school’s IT department posts regular updates about Zoom security best practices, such as mandatory passwords for meetings, tips for meeting planners, and practices users should avoid. Security and privacy of Zoom meetings is important for more than just educational and business organizations, too.

Here are a few tips to help you stay safe while using Zoom, whether you’re doing an online meetup with friends or discussing important business with coworkers — or your financial advisor! And by the way, all the following comments apply to both the free online version and the desktop app, if you choose to install it. In fact, according to online security expert Kaspersky, it’s probably safer to use the web-based version through your internet browser, rather than the desktop app, because of the additional security measures built in to the browser. And, as with any internet-based application, you should always utilize a strong password for your Zoom account that is not easy to guess. It’s also wise to require two-factor authentication (usually, a text message to your mobile phone with a verification code that you enter during the sign-in process) for logging in.

All that said, here are four key safety tips for using Zoom.

1. Always use a meeting password.

This will soon become mandatory on the Zoom platform, but even before that happens, you should always set up a password for any Zoom meeting you are hosting. You should also avoid logging in as a participant to a Zoom meeting where a password isn’t required. This is the single best defense against Zoom bombers and other hackers.

2. Enable and use the “Zoom waiting room.”

This option, located under “advanced options” when you set up a meeting, requires attendees to enter a virtual waiting room. The meeting host can then see who is ready to join the meeting and can either let them in, remove them from the waiting room (which keeps them out of the meeting), or send them a message. This option also allows the meeting host to move a participant into the waiting room if they begin acting inappropriately—sort of like the “time out” corner with misbehaving kids.

3. Don’t post links to Zoom meetings online or on social media.

Details like meeting ID numbers and passwords should only be shared via direct email or automated calendar invitations to participants. Anyone with the meeting ID number can attempt to join the meeting, so make sure it only goes to those who are supposed to be participating.

4. If you are hosting a Zoom meeting, use the security icon to lock the meeting and manage participant interaction.

The icon appears in the tool bar at the bottom of the Zoom screen, shaped like a badge. It allows the meeting host to control which participants can share their screen and also allows the host to lock the meeting so that no one else can join, even if they have the meeting ID and password.

5. Don’t allow Zoom meetings to be recorded without your permission.

Recorded meetings can be re-posted to public websites like YouTube. Most of the time, you shouldn’t permit the host or anyone else to record the meeting. If there is a compelling reason it should be recorded, you should have full knowledge and give specific consent.

Online technology has helped us feel less isolated during the Coronavirus lockdown. But all of us still need to remember the importance of protecting our data and personal information from bad actors who will take advantage of any vulnerability they can exploit. I want my clients to stay well-informed and to feel safe at all times. If you have questions about online safety, especially regarding your financial affairs, please get in touch. To read my blog article about other ways to stay safe online, click here.

Stay Safe, Stay Home, Stay Hopeful!

Empyrion Wealth Management (“Empyrion”) is an investment advisor registered with the U.S. Securities and Exchange Commission under the Investment Advisers Act of 1940. Information pertaining to Empyrion’s advisory operations, services and fees is set forth in Empyrion’s current Form ADV Part 2A brochure, copies of which are available upon request at no cost or at The views expressed by the author are the author’s alone and do not necessarily represent the views of Empyrion. The information contained in any third-party resource cited herein is not owned or controlled by Empyrion, and Empyrion does not guarantee the accuracy or reliability of any information that may be found in such resources. Links to any third-party resource are provided as a courtesy for reference only and are not intended to be, and do not act as, an endorsement by Empyrion of the third party or any of its content. The standard information provided in this blog is for general purposes only and should not be construed as, or used as a substitute for, financial, investment or other professional advice. If you have questions regarding your financial situation, you should consult your financial planner or investment advisor.