Você está aqui: Página Inicial / Blog / Security in online meetings and conferences: risks and best practices

Security in online meetings and conferences: risks and best practices

How many online meetings have you attended this week? Probably quite a few if you work from home or in a hybrid model. Online conferences are usually convenient since they permit an array of issues to be dealt with regardless of the physical location of participants. However, they may also pose certain challenges and security risks that need to be addressed. 

Leading cybersecurity risks of online meetings and conferences

Fake links to alleged meetings

One of the most common and dangerous risks is phishing, that is, scammers sending fake meeting links via email, social media, or instant messaging apps. 

The links may seem legitimate, but they could actually lead to harmful websites or install malware on your device to capture personal, banking, or professional information. 

Data leaks

Another risk involves the leak of sensitive information. For example, cybercriminals can steal a participant's profile to make covert recordings.

Leaks may also occur simply due to user carelessness. For example, a participant could invite other people to a meeting without notifying them. 

The risk is even greater when meetings are held in shared offices or public places like coffee shops. This is because unauthorized people might be able to hear or see information on your screen. In addition, public or shared Wi-Fi networks tend to offer weaker security against hacking attempts.

Deepfake

A third risk is deepfake, a technology that allows users to create fake videos of people using artificial intelligence to imitate their appearance and voice. This technology can be used to trick participants in an online meeting into believing that they are talking to someone who isn’t who they claim to be. 

How to protect yourself from these risks in online meetings

Confirm before clicking on a link: To avoid this trap, always verify the sender’s identity and the link address. If you don't recognize them or aren't expecting a meeting, it’s best to not click on the link. Before doing so, check with the person or organization that apparently sent it. 

Ensure information confidentiality: To prevent accidental data leaks, only invite the necessary people and, when sharing sensitive information, emphasize the importance of upholding confidentiality. Only use reliable online meeting tools and, whenever possible, create private rooms with passwords to prevent third parties from joining the meeting. Another great tip is to prepare the meeting agenda in advance to avoid discussing sensitive subjects that not everyone present should know about. For the same reason, avoid sharing your screen unnecessarily or showing documents that aren't relevant. 

Consider your surroundings: Before staging a meeting, find a private, soundproof setting. If that’s not possible, use headphones to prevent other people from hearing what is being discussed. It’s best to participate from a secluded room or in a corner with your back to the wall to avoid eavesdroppers. Don’t forget to close the blinds if there are windows in the room. 

Deepfake: To avoid falling victim to a deepfake, pay close attention to the signs that may indicate that the presented image has been manipulated. Some of the most common signs include distortions, poor lip sync, or inconsistencies in the behavior or speech of the person being "copied". You could also ask the person to make a specific gesture or answer a personal question to confirm their identity.

Conclusion

Security in online meetings and conferences is a responsibility shared between users and platforms. By adopting simple security measures, like checking links, authenticating identity, and taking care when it comes to sensitive information, you can hold meetings with far greater peace of mind.

Article originally written in Portuguese by Perallis Security Content Team: Segurança em reuniões e conferências online: perigos e boas práticas — Perallis Security