Category Archives: Eric S. Yuan

Zoom has partially fixed two new flaws, with other security hurdles ahead

Posted on by

Cisco Talos researchers recently uncovered two new flaws in Zoom that could allow attackers to execute arbitrary code on users’ computers, according to research published Wednesday. Zoom has partially fixed the vulnerabilities, according to Cisco Talos. The cybersecurity company said it worked with Zoom on addressing the flaws. It’s the latest set of security bugs discovered in Zoom, a teleconferencing company whose software has come under heightened scrutiny in recent months as the coronavirus pandemic forced people around the world to telework and rely on videoconference platforms. Competitors include Cisco WebEx, Microsoft Teams, and GoToMeeting. Zoom fixed one of the issues, dubbed TALOS-2020-1056, in May. And while Zoom addressed the other flaw, dubbed TALOS-2020-1055, in a server-side update, Cisco Talos’ Jon Munshaw said in a blog he believes that a client-side update will be necessary to fully mitigate any risk. The first flaw, TALOS-2020-1056, affecting Zoom Client version 4.6.10, relates to how Zoom processes messages. […]

The post Zoom has partially fixed two new flaws, with other security hurdles ahead appeared first on CyberScoop.

Continue reading Zoom has partially fixed two new flaws, with other security hurdles ahead

Zoom founder promises to remedy security, privacy concerns during a ‘feature freeze’

Posted on by

Zoom’s founder says the company behind the popular videoconferencing app will spend the next 90 days focused on fixing security issues. In a blog post Thursday, Zoom founder Eric S. Yuan said the technology firm is enacting a “feature freeze,” in which employees will turn their attention from enhancing usability toward tightening data protection. The announcement comes as the number of daily Zoom users has skyrocketed to 200 million users in March, up from 10 million in December, as much of the world’s workforce moves to remote work amid the COVID-19 pandemic. The update from the San Jose-based company comes after the FBI issued a public warning about “Zoombombing,” in which white supremacists and other unauthorized outsiders have hijacked teleconferences. In some cases, internet trolls have disrupted online classes to shout profanities at teachers. Zoom also was hit with a class-action lawsuit in which users claimed the company was sharing […]

The post Zoom founder promises to remedy security, privacy concerns during a ‘feature freeze’ appeared first on CyberScoop.

Continue reading Zoom founder promises to remedy security, privacy concerns during a ‘feature freeze’