Announcements
Planned Site Maintenance
Due to scheduled maintenance, account creation for new Community users will be unavailable 11 a.m. Eastern October 23, 2020 – October 24, 2020. We apologize for any inconvenience.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
Community Champion

Zoom to this new call (whether you want to or not) ...

I'm not absolutely certain, from the write-up, that this qualifies as a driveby, but it seems an interesting set of options to get people to have video, and possibly audio, enabled when they join a call, whatever options they think they've set.

 

Also, if you've ever installed Zoom, and uninstalled it, there seems to be an intriguing "auto-reinstall" function that's left some stuff running on your device ...


............
This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
3 Replies
Highlighted
Community Champion

Re: Zoom to this new call (whether you want to or not) ...

The researcher gave Zoom 90 days to fix it and they refused to take him seriously! Here's his story.

Highlighted
Newcomer II

Re: Zoom to this new call (whether you want to or not) ...

Looks like Apple is taking the matter into their own hands.

 

https://techcrunch.com/2019/07/10/apple-silent-update-zoom-app/

Highlighted
Newcomer II

Re: Zoom to this new call (whether you want to or not) ...

Ring Central, Zhumu, and other while labeled services are also affected by this vulnerability.

 

https://www.buzzfeednews.com/article/nicolenguyen/ringcentral-and-zhumu-customers-vulnerability