Zoom has released an update to fix a security vulnerability on macOS that may have allowed an attacker to gain complete control of a user’s computer.
Zoom is a web-based service for holding video conferences, webinars, and online chats, accessible either through a desktop client or a mobile app.
Zoom’s popularity has skyrocketed throughout the COVID-19 crisis, with millions of individuals utilizing the app to maintain contact with loved ones and colleagues.
The software is free to download, and users have the option of signing up for either a free plan or one of several paid plans offered by Zoom.
The video chat application’s auto-updater program not only possessed full administrative privileges, but also a signature verification method that could be tricked by simply renaming the downloaded package to sound like the original. Your app could be exploited if it is forced to use an older version or downgraded by a hacker.
Patrick Wardle, founder of the Objective-See Foundation, which develops free and open-source macOS security solutions, discovered the vulnerability and disclosed it at the Def Con hacker conference.
Not for the first time has Zoom had security issues, and this time they affects Mac users as well. As 2019 began, the firm hurriedly patched a webcam hijacking hack that ran on a custom-built web server.
Zoom’s operations were thoroughly examined because of the heightened scrutiny that began in the spring of 2020, at the beginning of the COVID-19 pandemic. While that did prompt some adjustments, it’s evident that Zoom isn’t perfect.
Zoom 5.11.5 can be updated on a Mac by launching the program and then selecting zoom.us (or another equivalent URL, depending on your location) from the app’s main menu. Click the Check for Updates button, and if an update is available, Zoom will show you a window containing the new software version and information about the changes that have been made. To start the update, click the Update button.