• Home
  • Apps
  • Apps News
  • Zoom Makes a U Turn, Fixes Security Flaw in Mac App With Emergency Patch; Updated App Coming This Weekend

Zoom Makes a U-Turn, Fixes Security Flaw in Mac App With Emergency Patch; Updated App Coming This Weekend

Zoom patch is now available on the company website.

Share on Facebook Tweet Snapchat Share Reddit Comment
Zoom Makes a U-Turn, Fixes Security Flaw in Mac App With Emergency Patch; Updated App Coming This Weekend

Photo Credit: Zoom

Zoom has earlier played down the security flaws present in its Mac app

Highlights
  • Zoom’s emergency patch is now live
  • The updated version of Zoom app will be coming this weekend
  • The new version will save video preference from first Zoom meeting

Zoom has pushed out an emergency patch to kill the exploit for the local Web server installed by its Mac app in a surprise U-turn. The company had earlier called it “a legitimate solution to a poor user experience problem,” after a researcher pointed out how it could be used to by an attacker to forcibly join a Mac user to a Zoom call with video camera activated. The company has also revealed that it will be releasing an updated Zoom version this weekend, which will save the user's video preference from their first Zoom meeting to all future Zoom meetings. Until now, the Zoom users had to select their video preference for every single call.

Following a major public outcry over security researcher Jonathan Leitschuh's findings, the company announced the change in its stance in an updated blog post. As per the latest update, the July 9 patch to the Zoom app on Mac is now live. The update can be found on the company website or by using Check for Updates option by clicking on zoom.us in the top left corner of Zoom app. The patch will remove the local Web server.

“Initially, we did not see the Web server or video-on posture as significant risks to our customers and, in fact, felt that these were essential to our seamless join process,” Zoom said in a statement. “But in hearing the outcry from some of our users and the security community in the past 24 hours, we have decided to make the updates to our service.”

The company will also be releasing the updated version of the Zoom app of Mac to fix the video on by default ‘feature' that was one of the reasons how an attacker could get an unsuspecting Zoom for Mac user on video. The updated Zoom version will be released on July 12 for all platforms and it will save video preference from the first Zoom meeting for all future meetings. The users, however, will have the option in the settings to change the preference.

In an update to his original Medium post, Leitschuh is now claiming that the vulnerability that plagued Zoom for Mac is also present in Ringcentral.

“As far as I can tell this vulnerability also impacts Ringcentral. Ringcentral for their Web conference system is a white labelled Zoom system,” Leitschuh wrote.

Comments

For the latest tech news and reviews, follow Gadgets 360 on Twitter, Facebook, and subscribe to our YouTube channel.

Further reading: Zoom, Apple, Mac, Ringcentral
Gaurav Shukla Part of Gadgets 360 news team, Gaurav handles a multitude of responsibilities from covering the latest happenings in the world of science and technology to editing and assigning news stories. In another life, he used to be a technology blogger, writing about Android and its massive ecosystem. Paranoid about online surveillance, Gaurav believes an artificial general intelligence is one day going to take over the world, or maybe not. He is a big Person of Interest fan though. More
Nokia 9 PureView With Penta-Lens Camera Launched in India: Price, Specifications, Offers
Twitter Bans 'Dehumanising' Posts Toward Religious Groups

Related Stories

 
 

Advertisement

 

Advertisement

© Copyright Red Pixels Ventures Limited 2020. All rights reserved.