Security News > 2020 > April > Zoom Vulnerabilities Expose Users to Spying, Other Attacks

Zoom Vulnerabilities Expose Users to Spying, Other Attacks
2020-04-02 10:02

Security researchers discovered recently that the Zoom video conferencing app is affected by vulnerabilities that can be exploited to spy on users, escalate privileges on the system, and capture Windows credentials.

"At Zoom, ensuring the privacy and security of our users and their data is paramount. We are aware of the UNC issue and are working to address it," a Zoom spokesperson told SecurityWeek via email.

A piece of malware can leverage this to record Zoom meetings, or launch Zoom in the background and abuse it to access the victim's microphone and webcam.

Zoom told SecurityWeek that it's investigating the issues identified by the researcher and is working on addressing them.

UPDATE. In a blog post, Zoom says it has already released fixes for the flaws discovered by Wardle and the UNC link issue.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/zctFggy557Q/zoom-vulnerabilities-expose-users-spying-other-attacks

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Zoom 54 4 51 80 12 147