cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
rslade
Influencer II

Zoom to this new call (whether you want to or not) ...

I'm not absolutely certain, from the write-up, that this qualifies as a driveby, but it seems an interesting set of options to get people to have video, and possibly audio, enabled when they join a call, whatever options they think they've set.

 

Also, if you've ever installed Zoom, and uninstalled it, there seems to be an intriguing "auto-reinstall" function that's left some stuff running on your device ...


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
3 Replies
AppDefects
Community Champion

The researcher gave Zoom 90 days to fix it and they refused to take him seriously! Here's his story.

kpinkham
Newcomer II

Looks like Apple is taking the matter into their own hands.

 

https://techcrunch.com/2019/07/10/apple-silent-update-zoom-app/

kpinkham
Newcomer II

Ring Central, Zhumu, and other while labeled services are also affected by this vulnerability.

 

https://www.buzzfeednews.com/article/nicolenguyen/ringcentral-and-zhumu-customers-vulnerability