Items tagged with (nasdaq:zm)

by Nathan Ord - Fri, Mar 19, 2021

This Zoom Screen-Sharing Security Flaw Might Be Leaking Your Private Data

Zoom has become one of the most popular video conferencing solutions for working and learning from home since the start of the COVID-19 pandemic. Given that the platform is so popular, it is not surprising that security flaws pop up from time to time. Subsequently, researchers from Germany have discovered a glitch in Zoom's screen-sharing feature, which could leak all sorts of data if captured. The glitch denoted as CVE-2021-28133, "sometimes allows attackers to read private information on a participant's screen, even though the participant never attempted to share the private part of their screen." This can happen when a specific window is being screen-shared, and a background application is... Read more...

by Shane McGlaun - Fri, Jul 10, 2020

New Zoom Zero-Day Security Exploit Threatens Windows 7 Users With Remote Code Execution

Zoom has had more than its fair share of security issues over the last several months with the popularity of the service soaring while people around the world are working from home during the coronavirus pandemic. Zoom is currently working to fix a recently discovered zero-day vulnerability with its Windows client that could lead to arbitrary remote code execution. The vulnerability was discovered by a researcher who wishes to remain anonymous. According to Acros Security CEO Mitja Kolsek, the researcher who discovered the vulnerability didn't report it to the vendor or a third-party broker, but didn't object to Acros reporting the issue to Zoom. Acros Security analyzed the problem and determined... Read more...

by Shane McGlaun - Sun, Jun 07, 2020

Researchers Expose Major Security Flaws In Zoom That Could Leave Any PC Vulnerable

During the coronavirus pandemic, many people who have been working and learning from home have turned to video chat service Zoom. However, the service has had more than its fair share of issues with security and privacy over the last few months. Two new vulnerabilities have surfaced in the video chat platform that could allow malicious users to execute code on targeted computers. Both the vulnerabilities were discovered by Cisco Talos, which is a cyber threat intelligence team that provides network security solutions against emerging threats. Cisco Talos adhered to its coordinated disclosure policy, working with Zoom to ensure that both issues were addressed. One of the issues, TALOS-2020-1056,... Read more...

by Brandon Hill - Wed, Jun 03, 2020

Zoom End-To-End Encryption Sadly Isn’t Coming To Free Accounts, And Here’s Why

Zoom has been riding high due to the COVID-19 pandemic, and has in the past few months become a household name as families, businesses, and schools have used the platform to keep people in touch. The company this week announced its fiscal Q1 2021 earnings and absolutely crushed it, reporting revenue of $328 million (up 169 percent year-over-year). Coming off that big earnings win, Zoom CEO Eric Yuan explained that the previously-announced end-to-end encryption functionality would not be available to all users. Instead, it will only be available to users that actually use the paid version of Zoom, which starts at $14.99 month per host. So, what about Zoom users with free accounts... Read more...

by Brandon Hill - Thu, Apr 30, 2020

Zoom Admits It Misled With 300 Million Daily Active Users Claim As Microsoft And Google Give Chase

Earlier this month, Zoom proudly announced via a blog post that it has surpassed the 300 million daily active users (DAU), crowing that “more than 300 million people around the world are using Zoom during this challenging time.” It was an impressive figure for a company that is challenging the likes of Google, Microsoft, and Facebook for dominance in the video conferencing sector. But as it turns out, that number was bogus, and Zoom tried to quietly walk back the 300 million DAU figure by removing it from the original blog post. The only problem, however, is that the tally had already been widely reported, and The Verge noticed that the blog had been... Read more...

by Paul Lilly - Mon, Apr 06, 2020

US DOJ Warns Zoombombing Is A Federal Offense, While Zoom CEO Admits To Security Missteps

Some school districts have reportedly banned the use of Zoom over security and privacy concerns, as weaknesses in the software have come to light in recent weeks. Speaking to those concerns, Zoom founder and CEO Eric Yuan admitted the startup "moved too fast" in light of the COVID-19 outbreak and "had some missteps." Complaints have ranged from security flaws that could potentially expose a user's Windows login credentials and shady data collection practices (which Zoom later apologized for), to having sessions disrupted by hackers. Known as "Zoombombing," this often results in a hacker displaying pornographic or racist images, along with using threatening language. It is easy to see why school... Read more...