Tuesday, April 29, 2025
Follow us On Linkedin
Homecyber securityZoom Takes U-Turn, Promises End-to-End Encryption for Free Users

Zoom Takes U-Turn, Promises End-to-End Encryption for Free Users

cyber securityCyber Security News

Published on

By Gurubaran
Zoom Encryption

Supply Chain Attack Prevention

SIEM as a Service

Follow Us on Google News

Zoom announced on Wednesday that they decided to provide end-to-end encryption for all customers, not only for the paid users.

The company announced end-to-end encryption for video and audio calls at the end of May, and it is only available for the paid users of its platform.

Now Zoom comes up with the decision after engaging with the civil liberties organizations, our CISO council, child safety advocates, encryption experts, government representatives, and their users.

- Advertisement - Google News

“We are also pleased to share that we have identified a path forward that balances the legitimate right of all users to privacy and the safety of users on our platform.”

Zoom released an updated version of End-to-end encryption (E2EE) design, the new design can be found on GitHub.

“This will enable us to offer E2EE as an advanced add-on feature for all of our users around the globe – free and paid – while maintaining the ability to prevent and fight abuse on our platform.”

How to Avail this E2EE

For Free/Basic users to avail E2EE phone number verification needs to be done, users need to provide phone and verify secret code via text message.

“We are confident that by implementing risk-based authentication, in combination with our current mix of tools — including our Report a User function — we can continue to prevent and fight abuse,” reads the report.

Starting from July 2020 the company planned to enable E2EE for free users. AES 256 GCM transport encryption will remain as the default encryption for all Zoom users.

E2EE will remain an optional feature because it limits some traditional functionalities “to include traditional PSTN phone lines or SIP/H.323 hardware conference room systems.”

Also, the account administrators have options to enable or disable E2EE at the account and group level.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Also Read

New Zoom Flaw Let Attackers to Hack into the Systems of Participants via Chat Messages

Hackers Use Fake Zoom Installers to Install Backdoor and Devil Shadow Botnet on Windows Computers

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Cyber Attack

Blinded from Above: How Relentless Cyber-Attacks Are Knocking Satellites Out of Sight

According to the Center for Strategic & International Studies' (CSIS) 2025 Space Threat Assessment,...
Chrome

Google Chrome Vulnerability Allows Attackers to Bypass Sandbox Restrictions – Technical Details Revealed

A severe vulnerability, identified as CVE-2025-2783, has been discovered in Google Chrome, specifically targeting...
cyber security

Threat Actors Accelerate Transition from Reconnaissance to Compromise – New Report Finds

Cybercriminals are leveraging automation across the entire attack chain, drastically reducing the time from...
Cyber Attack

ResolverRAT Targets Healthcare and Pharmaceutical Sectors Through Sophisticated Phishing Attacks

A previously undocumented remote access trojan (RAT) named ResolverRAT has surfaced, specifically targeting healthcare...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

Register Now

More like this

Cyber Attack

Blinded from Above: How Relentless Cyber-Attacks Are Knocking Satellites Out of Sight

According to the Center for Strategic & International Studies' (CSIS) 2025 Space Threat Assessment,...
Chrome

Google Chrome Vulnerability Allows Attackers to Bypass Sandbox Restrictions – Technical Details Revealed

A severe vulnerability, identified as CVE-2025-2783, has been discovered in Google Chrome, specifically targeting...
cyber security

Threat Actors Accelerate Transition from Reconnaissance to Compromise – New Report Finds

Cybercriminals are leveraging automation across the entire attack chain, drastically reducing the time from...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved