This attack involves using a compromised subdomain to steal security tokens when a user loads an image - but the end-user would just see the GIF sent to them, and nothing else.
According to Forbes, “Tech giants are fighting to become the de facto videoconferencing tool for remote workers in the time of COVID-19. Zoom rose to the top fast, but thanks to various security and privacy issues, was pegged back by competitors. But rivals have their flaws too, as evidenced by a weakness discovered in Microsoft’s collaboration and videoconferencing tool Teams, as revealed on Monday.”
“For at least three weeks from the end of February till mid-March, a malicious GIF could’ve stolen user data from Microsoft Teams accounts, possibly across an entire company, and taken control of 'an organization’s entire roster of Teams accounts,' cybersecurity researchers have warned,” reported Forbes.
"They will never know that he or she has been attacked - making this vulnerability... very dangerous."
Microsoft created a patch that was deployed on April 20.
WATCH AT NOON: Former Director of Health Dr. Michael Fine on GoLocal LIVE
Zoom Security Issues
As GoLocal reported, officials in New York City Schools have banned the use of Zoom for remote teaching, citing security concerns with the video conferencing service.
Members of Congress are calling on the company to answer questions and the CEO of the company has apologized for failing to address significant security issues. Despite the issues, Rhode Island schools -- and the largest district -- are continuing to use and promote Zoom and have issued no warning to families.
Zoom's security issues are well-documented as meetings can easily be hacked with indecent content. In early April, GoLocal reported that an online rally organized by Mayor Jorge Elorza was hacked and the n-word was posted.
Rhode Island schools use both platforms.
“Rhode Island schools are using a number of online platforms for distance learning, including Zoom. We encourage districts and schools to follow privacy guidelines no matter the online platform they use. We continue to work with LEA leaders as they ensure the privacy of student data during distance learning," said Pete Janhunen, spokesperson for RIDE in a statement to GoLocal.
“The Providence Public School District currently includes Zoom in its suite of online teaching tools. We are aware of security concerns with Zoom, which is why our information technology team has collaborated with our teaching and learning staff to adopt protocols that minimize any abuse of this online platform. We will continue to monitor the situation,” said Laura Hart of the Providence Public Schools.
SLIDES: See 7 Major Coronavirus Developments BELOW
Related Slideshow: 7 Major Coronavirus Developments — April 29, 2020
CVS Helps Fill Technology Gap in Woonsocket Schools
CVS Health announced it is helping close the technology gap for public school students in Woonsocket by funding the purchase of 750 Chromebook laptops for them to use at home.
The Woonsocket schools are among the lowest-scoring schools in the state.
A $150,000 donation to the Rhode Island Foundation will cover the costs and round out the Foundation’s effort to ensure that every K-12 student in the district has access to computers and Wi-Fi for remote learning during this unprecedented time.
In partnership with the Rhode Island Department of Education (RIDE), the Rhode Island Foundation committed $100,000 for this initiative earlier this month and issued a statewide challenge, encouraging individuals and local corporations to pitch in.
“Recent stay-at-home orders and school closures have put many families in an extremely difficult position,” said Lisa Bisaccia, Executive Vice President and Chief Human Resources Officer at CVS Health. “We hope that providing access to technology helps ease the burden on local families in our hometown of Woonsocket who are struggling to juggle the demands of work, school and childcare, while maintaining their own health and well-being.”
Sen. Elizabeth Warren (D-Mass.) and Rep. Alexandria Ocasio-Cortez (D-N.Y.) have introduced legislation to halt large mergers and acquisitions through the duration of the coronavirus pandemic, the progressive pair's latest bid to rein in what they see as predatory behavior from private equity firms and corporations, Pitchbook reports.
Last week, Rep. David Cicilline (D-R.I.), the chair of the House Antitrust Committee, proposed a similar temporary ban on large acquisitions.
Warren's and Ocasio-Cortez's legislation is named the Pandemic Anti-Monopoly Act, the legislation would place a moratorium on takeovers involving companies with over $100 million in revenue and financial institutions with a market cap exceeding $100 million. The bill specifically takes aim at private equity firms, hedge funds and companies that are majority-backed by either type of investor.
RI Executive Order Gives Flexibility to Rhode Islanders Seeking Healthcare Services
The Executive Order includes the following protections through May 27th:
Medications: Insurers cannot make changes to what drugs are covered unless the changes benefit patients. Provider Referrals: Insurers are required to relax the referral process to allow for more time and leniency. No referrals are necessary for telehealth. Prior Authorization: In-patient hospital and rehabilitation, long-term care and telemedicine in-network services cannot be suspended because an individual doesn’t have prior authorization. In addition, no prior authorization is needed for testing or treatment of COVID-19. Behavioral Healthcare: No referrals or other benefit review approvals are required for a patient to access needed mental and behavioral health care.
12:00 PM - Dr. Michael Fine, Former Director of RI Dept. of Health
2:30 PM - Governor Gina Raimondo Press Briefing
3:00 PM - Professor Jennifer Lawless, University of Virginia Professor of Politics -- Latest on Trump Administration, Coronavirus, and Campaigns
4:00 PM - Dr. Brett Owens, Professor of Orthopaedic Surgery at Brown University Alpert Medical School -- Youth and Athletics in Coronavirus
EDITOR'S NOTE: Raimondo does not allow Rhode Islanders to hear reporters' questions. Nearly all governors across the country and the White House allow reporters to ask questions directly and for the public to hear the questions and the responses.
