This week, the biz admitted to infosec journo Brian Krebs that this password-protected-by-default feature may not be working as intended, leaving people's meetings exposed.
Very true. Especially if people (re)use their personal meeting room, of which the meeting ID does not change. I'm not sure, but I believe there is a specific Zoom setting that, so that for a personal room meeting no password is generated and/ or required. What I do know however, is that in the period since Zoom introduced the new password rule, I didn't encounter a single time I had to enter one (avg. 3-5 Zooms/ wk).