Dutch journalist gatecrashes EU defence video conference

According to a screenshot that the journalist posted on Twitter, it appears like the video conference session is browser-based, and the pin and username are in the browser URL <i>in plaintext</i>.<p>So then if you can see anyone&#x27;s screen, or any clear photo of it, you can easily join the conference. Seems like very poor security design if that&#x27;s so<p><a href="https:&#x2F;&#x2F;pbs.twimg.com&#x2F;media&#x2F;EnRlaFeWMAQzyIS?format=jpg" rel="nofollow">https:&#x2F;&#x2F;pbs.twimg.com&#x2F;media&#x2F;EnRlaFeWMAQzyIS?format=jpg</a><p>The software URL format looks similar to that used by Pexip.com

If he joined the video conference to watch and listen, but just sent a blank screen video, or maybe a freeze frame of an empty chair, would anyone have noticed?

I think they should be a lot more concerned about the people recording the meeting who <i>don&#x27;t</i> show up on the attendee list, than of the people who show up and wave in front of the camera.

The conference chair couldn&#x27;t help giggling. What was it he said? &quot;Hey you better hang up before the police arrives&quot;?

They&#x27;re laughing right now, but really these kinds of mistakes are telling how weak the security of various agencies are.

Note that there are different levels of &quot;secret&quot; when it comes to this stuff. Given the size of that meeting (20+ people) and the reaction, I&#x27;d be surprised if the topic matter was more secret than how much the defense agencies pay their employees - secret, no doubt, but not exactly the nuclear launch codes.

Its amazing how well they took it, laughing and all

I wonder, I he was sitting in a suit and in a room with some flags behind him (not in his shirt in an ordinary office) if anyone would have even noticed he was intruding on their conference. They laugh it off now because he doesn&#x27;t fit in.

This is profoundly depressing. The fact that an EU defence conference is being held... on Zoom, is truly a microcosm of what has been the strategic policy of the EU for the past 20-30 years. We have sold off our independence, out advantages economic and otherwise, <i>for pennies</i>. For minuscule short-term gains, we have sold off our industry, our tech, to a hostile and totalitarian government. Well when I say &quot;we&quot; I mean private enterprise, but also the governments who were supposed to be raking in (though as one German economist said, government and private enterprise are pretty much one and the same).<p>It will come soon a time (in fact, it&#x27;s pretty much here already) where China calls the shots over us. &quot;Obey, or no microchips for you. In fact, no manufacturing of any kind.&quot; Thoroughly depressing.

One of the ways China managed to hack into America&#x27;s F35 (or F22) fighter development program was listening into a conference call of various vendors discussing project status.

Of course they respond with the obligatory &quot;we&#x27;ll report this to the authorities&quot;, rather than &quot;thank you for pointing this out in a harmless way we&#x27;ll do better&quot;.

Yeah, the problem with online meetings is that someone else might be taking part as well, unseen and unheard.<p>Does not matter as much if you discuss reconstruction of a mountain hut, matters a lot in defence, espionage or diplomacy.

Not sure how confidential that conference was but I&#x27;d imagine these use at least a 2FA dongle to authenticate. This is surprising.

What&#x27;s more depressing is that this official has GMail open. How ridiculous is that? Which defense minister outside of the USA uses Google Mail? After Snowden, really?<p>I want to facepalm so hard right now.

EU has no defense anyway so this is not entirely disastrous, though still very unacceptable.