Elon Musk’s SpaceX has banned its employees from using video conferencing app Zoom, citing concerns over the app’s ability to keep users secure.

A similar ban has been issued by one of SpaceX’s biggest customers, NASA, coming into force after the FBI issued a warning about “Zoom-bombing” – hackers disrupting video conferences with threatening language, hate speech and pornographic images.

Zoom has previously admitted that it is “currently not possible” to enable end-to-end encryption for its video meetings.

In an email seen by Reuters, SpaceX informed its staff that all access to Zoom had been disabled with immediate effect.

“We understand that many of us were using this tool for conferences and meeting support,” the message read. “Please use email, text or phone as alternate means of communication.”

It’s not known whether the ban also extends to Tesla, which is also owned by SpaceX CEO Elon Musk. The company was unable to respond to requests for comment at the time of publication.

Zoom has surged to more than 200 million daily meeting participants after employees around the world were asked to work from home to slow the pace of the fast-spreading coronavirus pandemic. On 5 March, Slack, Facebook, and Microsoft had all advised their employees to work remotely following the spread of the virus to the west coast of the United States. Over the course of the month, most tech giants had closed their offices, shifting all employee communications online.

Despite numerous security warnings, prime minister Boris Johnson is known to be using Zoom to hold cabinet video conferences. He was recently criticised for sharing a picture on Twitter in which a Zoom meeting ID was clearly visible.

A government spokesperson defended the PM, telling BBC News on Wednesday that “in the current unprecedented circumstances, the need for effective channels of communication is vital”.

The news comes days after a class-action lawsuit was filed against Zoom, the compliant alleging the service illegally shared user data with Facebook. Zoom’s founder and CEO, Eric S. Yuan, announced over a blog post that over the next three months, the company will work to “better identify, address, and fix issues proactively”.

Downtime can prove a fiasco for any organisation, as can a sudden surge in demand, and it’s particularly true for companies wired into the heart of the online gaming scene. From EA Sports’ FIFA to the renowned Call of Duty franchise, millions of gamers across the globe have come to expect 24/7 network availability. 

The growing demand for always-on services is akin to the way that organisations reliant on cloud-powered applications expect flawless and reliable connections on which to run their operations. Just look at the escalating COVID-19 pandemic that’s taken the cloud computing world by storm – with a surge in demand for data services, Wi-Fi networks and workplaces platforms like Microsoft Teams. The staggering work that goes into maintaining these networks as userbases swell, whether in the business or gaming worlds, is routinely overlooked; it’s often a case of missing crucial elements when things go wrong.

At games publisher Ubisoft, subsidiary i3D.net runs and maintains the networks that power widely-played AAA multiplayer games, like Tom Clancy’s The Division. While it had been successful managing with just 70 staff and servers based in 35 sites spanning 15 countries, in the mid-2010s, it became clear extra muscle was needed to continue to service a rapidly-swelling user base.

“The big thing in game hosting is the fact you need to be really flexible and very responsive to the fast-changing market,” i3D.net COO, Rick Sloot, tells Cloud Pro. “A game can be popular, or it can be a real flop. But as soon as the game is popular, and a lot of people are playing it, or maybe even more people are going to play it than you’re expecting, you need extra capacity within hours, or maybe, at most, in a matter of days.”

The pressures of an always-on world

In the past, i3D.net would factor networking issues as a business cost, but these started to become too frequent to sustain. The infrastructure was built to incorporate redundancy, though if any routers, switches or other equipment went down, i3D.net would be pressed to resolve these issues as soon as possible while game sessions across the world were put on hold. The firm sought to onboard a third-party network monitoring company in 2015 to bolster network resilience, once it became impossible to tolerate these problems. The need was especially pressing given how limited staffing levels were, combined with exponentially growing demand. Network management firm Opengear was recruited shortly before Ubisoft released its hotly-anticipated Tom Clancy’s The Division 2, to improve resilience and failover options should things get hairy.

“The way the 24/7 world is working currently, and everybody wants to be online 24/7, [network failure] was not an acceptable risk anymore,” Sloot continues. “Because the company, and everybody in the world, is demanding a 24/7 service, we needed to look for other solutions, and other ways of maintaining the flexibility but without adding a lot of overhead on us.”

The potential for demand to surge at any one time, and in any location across the world, was impractical given i3D.net would rely on its own network engineers to fly out to these sites should work need doing. Remote hands would be used where possible, but it would take crucial minutes or hours to establish a connection while networks were offline. Expansion at existing locations, or establishing new sites, also posed issues when demand for a game went “sky high”.

Going mobile

Opengear already formed a part of i3D.net’s infrastructure, but on a much smaller scale, Sloot says. The implementation phase, which spanned a year, involved heavily ramping up the company’s involvement, which, thanks to the existing relationship, was more straightforward than it could have been. The equipment was shipped to i3D.net, and its engineers spent the following year flying from location to location to install the infrastructure. As i3D.net harbours sufficient technical expertise, it primarily leant on Opengear for enhancements. Automatic failover to alternative networks, for example, would ensure games would continue running when things looked hairy. This operated through the installation of cellular friction, with communication running via 4G networks instead of traditional backup lines.

“Before, we would always try to have a backup line; for example, buy a backup line from a data centre and then connect that one. So this was a very good additional feature for us, which brought the service to a higher level,” Sloot continues. The implementation of cellular friction, however, brought its own challenges. 

“Maybe sometimes for us, from our side, it’s tricky because for cellular friction you need good quality of signal … which is always a challenge in a data centre, which is always a highly secure facility.”

As for how he’d advise other businesses to handle their networking infrastructure as they look to scale, he repeated that you would only miss the most crucial elements powering your networks behind the scenes when things go horribly wrong. 

“I always say to my guys here, what could be the worst that can happen?” he explains. “If you look at all those steps that could happen – what can you prevent, and if you can prevent them, what’s the best solution for it? 

“If there’s a solution, what are the costs versus the risks? Looking at this particular solution of Opengear, the costs of not having a network is, like, tens of thousands of Euros per hour. Buying the product is a small fraction of that, so, it’s a rather small investment for achieving high availability.”

Canonical has announced the arrival of Managed Apps, a service that will allow enterprises to have mission-critical apps deployed and operated by the firm as a fully managed service.

Covering ten of the world’s most widely used open source apps, Managed Apps removes the need for enterprises to contract with multiple vendors, Canonical explained, while customers also benefit from support for their underlying infrastructure.

The service will cover ten widely used cloud-native database and LMA (logging, monitoring and alerting) apps on multi-cloud Kubernetes and also on virtual machines across bare-metal, public and private cloud.

At launch, those managed databases include MySQL, InfluxDB, PostgreSQL, MongoDB, as well as ElasticSearch Open Source Mano and Kafka. The service will also cover demand-based scaling, high availability for fault tolerance, security patching and updates.

Managed Apps are also backed by SLAs for uptime, round-the-clock break/fix response, while businesses can monitor app health through an integrated LMA stack and dashboard, which includes Grafana, Prometheus and Graylog.

Ultimately, the initiative will allow DevOps teams to focus on delivering business value instead of typical time-consuming tasks thanks to the streamlined approach to infrastructure maintenance, the firm explained.

“As organisations increasingly move to a cloud-native approach, they can be slowed down by spending too much time on the underlying management of their cloud and its applications,” commented Stephan Fabel, director of Product at Canonical.

“Our Managed Apps give them the freedom to focus on business priorities, with the confidence that their apps are reliably maintained, secure and can scale to production needs.”

Managed Apps also offers full lifecycle management that includes resource-scaling based on changes in demand, as well offering high availability by default. Canonical’s managed services also have MSPAlliance CloudVerify certification, the firm said, which is equivalent to SOC 2 Type 2, ISO 27001/ISO 27002 and GDPR compliance.

The software firm also revealed that it plans to expand the number of open source apps covered by Managed Apps to further improve performance accountability.

The UK government is reportedly preparing to launch an app that will warn users if they are in close proximity to someone who has tested positive for coronavirus.

The contact-tracking app will be released just before the lockdown is lifted or in its immediate aftermath, Sky News has reported and will use short-range Bluetooth signals to detect other phones in close vicinity and then store a record of those contacts on the device.

If somebody tests positive for COVID-19, they will be able to upload those contacts, who can then be alerted – via the app.

This means that the data will not be regularly shared with a central authority, potentially easing concerns around privacy violations.

If people with the app later test positive for coronavirus, they could allow all the folks they’ve been near to be informed, so those people could self-isolate.

Jim Killock, executive director of the Open Rights Group, told IT Pro that the new app, and similar developments, might “prove to be important tools in the fight against COVID-19”. However, he also raised concerns about the privacy of users.

“Nevertheless, we are concerned that [the] government needs to put more effort into helping people understand their approach to privacy more generally, and improve their communications vastly. Building a project like this at speed carries privacy, security and delivery risks, so the more information that is given out the better,” he said.

NHSX, the innovation arm of the UK’s National Health Service, will reportedly appoint an ethics board to oversee the development of the app, with its board members set to be announced over the coming weeks.

“It is good that they are thinking about the privacy of users – this is essential to build trust and confidence so people use it,” said Killock.

Questions might arise over the effectiveness of the app, as large numbers of people will be required to use it in order for it to work efficiently. The NHS is reportedly counting on the app being downloaded by more than 50% of the population.

“NHSX is looking at whether app-based solutions might be helpful in tracking and managing coronavirus, and we have assembled expertise from inside and outside the organization to do this as rapidly as possible,” an NHSX spokesperson said.

Only last week, the NHSX and Matt Hancock MP were urged to follow steps that would guarantee that new technologies used to tackle the coronavirus outbreak abide by data protection ethics.

In an open letter signed by numerous “responsible technologists”, they were asked to take urgent steps to ensure that the public’s trust in the NHS is not undermined by possible data breaches. 

IBM has officially deployed an accelerated timeline for its coronavirus Call for Code and published three coronavirus-related Call for Code starter kits.

Each starter kit includes a comprehensive guide to help developers create apps to alleviate the problems people and communities are facing during the COVID-19 pandemic.

“We have learned how passionate developers are about solving the world’s most pressing issues, and how Call for Code’s infrastructure gives developers, data scientists, students, and subject matter experts the infrastructure they need to move from ideation through implementation,” said Daniel Krook, CTO of Call for Code. “Publishing developer-friendly starter kits has been key to help get developers up-and-running fast.”

Introducing three coronavirus starter kits

IBM has officially deployed an accelerated timeline for its coronavirus Call for Code and published three coronavirus-related Call for Code starter kits.

Each starter kit includes a comprehensive guide to help developers create apps to alleviate the problems people and communities are facing during the COVID-19 pandemic.

“We have learned how passionate developers are about solving the world’s most pressing issues, and how Call for Code’s infrastructure gives developers, data scientists, students, and subject matter experts the infrastructure they need to move from ideation through implementation,” said Daniel Krook, CTO of Call for Code. “Publishing developer-friendly starter kits has been key to help get developers up-and-running fast.”

Introducing three coronavirus starter kits

Crisis communication: Coronavirus has prompted many people to seek answers about symptoms, testing sites and the status of their communities. This starter kit comes equipped with a preloaded virtual assistant that understands and responds to common COVID-19 questions and scans COVID-19 news articles using Watson Discovery.

Remote education: While we may be in the midst of a pandemic, the edification of our youth must continue. Many schools and universities nationwide have shifted to online instruction to ensure the safety of themselves and their students. The remote education kit provides a set of IBM Cloud- and Watson Services-backed open-source tools related to remote education.

Community cooperation: We may be practising social distancing, but there is a growing interest in enabling cooperation among communities. More than ever, neighbours are offering to combine grocery runs and assist those around them. This kit enables the rapid deployment of applications that empower communities to continue working together.

IBM is continuing to develop a wide ecosystem of partners and tech providers in hopes of helping participants round out their solutions. Some of these partners include Altran and Bank of China.

Tarush Verma, client leader and AVP at Altran, said: “Altran will help fight this pandemic by creating innovative solutions for the Call for Code Global Challenge including chatbots and other applications based on the new COVID-19 developer starter kits.”

IBM reported it’s received upward of 1,000 registrations in a single day. Many of those applicants were individuals on the front lines, at-risk individuals and experienced coders who want to share their experiences and contribute to creating meaningful solutions. 

The initial submission deadline for this year’s Call for Code is now April 27. IBM will announce the three best solutions on May 5. Those teams will then work alongside IBM to have their solutions released into the “real world.”

To participate in this year’s Call for Code, visit the Call for Code site here. 

AWS has announced the general availability of Amazon Detective, the company’s automated security service. 

Amazon Detective works with machine learning and statistical analysis to build visualised maps of security threats in a customer’s cloud. Rather than a security team compiling all the relevant data to analyse and conduct a lengthy investigation, it automatically pulls data from services like CloudTrail and customer logs. 

The information is then run through AWS GuardDuty which compiles a graph that details all interactions across the customer’s infrastructure. Everything is run from the Amazon Management Console and, according to AWS, in just a few clicks your IT team can have a detailed report of the problem and where it has come from. 

The graph model is also continuously updated as new data becomes available from the customer’s AWS resources, allowing security teams to spend less time looking through constantly changing data sources and freeing them up to work on remediation. 

The service is being offered with no upfront fees but customers will pay if they need to upload data from AWS CloudTrail and other AWS services they use. 

“Even when customers tell us their security teams have the tools and information to confidently detect and remediate issues, they often say they need help when it comes to understanding what caused the issues in the first place,” said Dan Plastina, VP for security services at AWS. 

“Gathering the information necessary to conduct effective security investigations has traditionally been a burdensome process, which can put crucial in-depth analysis out of reach for smaller organisations and strain resources for larger teams. Amazon Detective takes all of that extra work off of the customer’s plate, allowing them to focus on finding the root cause of an issue and ensuring it doesn’t happen again.”

The service is available from today in Europe, the US, South America and parts of Asia, with more regions coming soon, the company confirmed. 

Video conferencing app Zoom does not use end-to-end encryption, according to reports, despite specifically stating that it does on its website.

Though Zoom offers users the option to “enable an end-to-end (E2E) encrypted meeting,” and provides a green padlock that claims “Zoom is using an end to end encrypted connection,” the company this week admitted that offers no such thing.

A spokesperson for the company told The Intercept that, despite its claims, it was “currently not possible” to enable end-to-end encryption for its video meetings.

Instead, the spokesperson revealed, the service uses Transport Layer Security (TLS) which encrypts data between user’s meetings and Zoom’s servers. End-to-end refers to data encrypted between calls, blocking out third parties – which includes the service provider. As a result, the company can see and use the data for things like targeted ads. 

“When we use the phrase ‘End to End’ in our other literature, it is in reference to the connection being encrypted from Zoom end point to Zoom end point,” the spokesperson added.

Like a number of video conferencing services, Zoom is currently benefiting from the coronavirus lockdown. Its usage in the US is reportedly three times as much as Microsoft Teams, which is fairly impressive for an app that was almost unheard of this time last year. 

Given the rapid rise of Zoom, Microsoft recently singled out the service in a partner video, suggesting that it’s a threat to its business model as it can be used in tandem with rivals like Slack and Google’s G Suite, unlike Teams.

Part of Zoom’s appeal to organisations is its simplicity and the fact it can be used for free, albeit without any premium features, which lets businesses try it out before forking out any money.
 
“Video conferencing is a fantastic necessity in times like these but it is vitally important to understand the security and privacy concerns that go in parallel with this increasingly popular form of communication,” said Jake Moore, a cyber security specialist for ESET.
 
“For social and light business meetings they are fine as long as users realise what data is being shared by Zoom to third parties. I certainly wouldn’t recommend using free software for sensitive or private meetings.”

On Tuesday, Boris Johnson tweeted a picture of his cabinet’s “first digital meeting” and, comically, left the ID number visible. This security blunder will not have gone down well with the Ministery of Defence, which has reportedly banned Zoom due to security concerns. 

Zoom told The Intercept that it only collects user data to improve the service and that it never allows its employees to access specific content in meetings and doesn’t sell any kind of user data. However, the company did confirm that it could hand over data from meetings if it was compelled to for legal proceedings. 

Welcome to the third issue of IT Pro 20/20, our brand-new digital magazine that brings all of the month’s most important tech issues into clear view.

Each month, we will shine a spotlight on the content that we feel every IT professional should be aware of, only in a condensed version that can be read on the go, at a time that suits you.

This month we’re taking a look at how cloud innovation is helping to support the technology industry and wider society through a global pandemic. Now that most of us are working remotely, it’s important you have the best tools in place to keep employees secure and productive, and so we’ve highlighted a number of areas where the cloud is helping to drive this effort. From free software and remote working tips, to industry leadership and changing technology paradigms, the cloud is behind it all.

We also take a look at the growing trend of screenless content and provide some tips for helping your organisation develop a much-needed audio strategy, as well as the growth of AI as a service, both of which are exclusive to this month’s issue.

As ever, you’ll also find a roundup of the four biggest stories of the month that are likely to reverberate throughout 2020.

We hope you enjoy reading this month’s issue. If you would like to receive each issue in your inbox as they release, you can subscribe to our mailing list here.

The next IT Pro 20/20 will be available on 30 April. Previous issues can be found here.