When you update your virtual meeting software, you usually don't expect some random software to install all on its own or run commands of its own volition. If you use Zoom on a Mac though, that is exactly what is possible. This is thanks to an exploit in the Zoom updater that was outlined by Objective-See security...Read more...
Zoom is a video conferencing platform that has seen impressive growth during the coronavirus pandemic as it has been widely adopted by schools and businesses to support people working and learning from home. Zoom today announced the acquisition of Keybase, noting that this is part of its 90-day plan to strengthen the...Read more...
Earlier this month, Zoom proudly announced via a blog post that it has surpassed the 300 million daily active users (DAU), crowing that “more than 300 million people around the world are using Zoom during this challenging time.” It was an impressive figure for a company that is challenging the likes of Google...Read more...
Users have been having a love-hate relationship with Zoom, the popular video conferencing application that has a seen a surge in activity since the COVID-19 outbreak. The startup was not quite prepared for the influx of mainstream users, and Zoom's CEO admitted to some security and privacy "missteps." Some of those...Read more...
Zoom has seen its business boom and its stock price grow in recent months in large part due to the coronavirus outbreak and an increasing number of people working from home. Its video conferencing service was one of the many that schools and businesses adopted to keep operating during the shelter-in-place orders in...Read more...
Hackers are always on the look out for the "next big thing" to exploit, either by finding vulnerabilities in an app or by latching onto brand recognition. With the coronavirus pandemic, hackers have aimed at certain software platforms that are being used heavily by workers stuck at home. One of the applications that...Read more...
Intel has disclosed another speculative side execution vulnerability affecting many of its processors, including its latest 10th generation mobile CPUs. Fortunately, there are already mitigating patches available, at least for users who are running Windows 10, Windows 8.1 (and Windows RT 8.1), Windows 7, and various...Read more...
Another day, another disclosure of a new side-channel exploit affecting modern PC processors. This time around, we're talking about ZombieLoad, which takes advantage of vulnerabilities specific to Intel processors.
At its heart, ZombieLoad is reminiscent of Meltdown, Spectre and Foreshadow, which we have all...Read more...
Newer versions of Windows, including Windows 10 are vulnerable right now to a new Server Message Block (SMB) zero-day exploit that has been shown as a proof-of-concept. The vulnerability was first demonstrated by @PythonResponder and requires a user to connect to a SMBv3 server for a successful attack.
Given the...Read more...
Zerodium, a new cybersecurity firm that pays independent researchers for their zero-day discoveries, is offering a big reward to anyone who creates an untethered, browser-based jailbreak for iOS 9. By "big" we're talking seven figures -- $1 million dollars, which it will pay out to the first three people or teams who...Read more...
Security is a hot topic these days, and with breaches happening left and right, we certainly get it. For consumers, things can usually boil down to implementing two-factor authentication. But what about enterprises? Zoho has just launched Zoho Vault, an online password manager for businesses far and wide. Zoho Vault establishes a central repository...Read more...
Another day, another Adobe Reader vulnerability -- what else is new, right? It just so happens that this latest security hole affects several versions of Adobe Reader, including 10 and 11, both of which are supposed to keep the operating system isolated from attacks through sandbox technology. No dice. "Adobe has identified critical vulnerabilities...Read more...
Tensions with China's government are already at an uncomfortable level, but who would have guessed that they would trickle into mobile? Yet that's exactly what's happening, following an investigation by a congressional panel into Chinese telecom firms Huawei and ZTE. According to the resulting House Intelligence...Read more...
First, the good news: the Zappos server that holds its customers sensitive financial information (such as credit card numbers) was not hacked this weekend. The bad news, however, is that hackers made off with just about every other type of customer information they could want, including names; email, billing, and shipping addresses; phone...Read more...