That’s why you need to audit every SDK you add to your app. "Zoom iOS App Sends Data to Facebook Even if You Don't Have a Facebook Account".Īlthough Zoom was quick to patch the issue (by removing the (ir)responsible code), many security researchers were quick to point out that said code should have never made it into the application in the first place: 📝 Interested in more details? Read Motherboard's writeup: More recently Zoom suffered a rather embarrassing privacy faux pas, when it was uncovered that their iOS application was, “ send data to Facebook even if you don’t have a Facebook account” …yikes! Keep in mind that Zoom’s persistent web server was the only legitimate piece of software I’ve ever seen Apple remove from all Macs using their Malware Removal Tool. H/T /RUCSDmR2sU- patrick wardle July 11, 2019ĪFAIK, this is the only time Apple has taken this draconian action: How? MRTConfigData_10_14-1.45 (MRT is 🍎's built-in "Malware Removal Tool") added "MACOS.354c063", a new encoded signature & removal routine 😯😅 TechCrunch/ "🍎 has pushed a silent update to all Macs removing a. Rather hilariously Apple (forcibly!) removed the vulnerable Zoom component from user’s macs worldwide via macOS’s Malware Removal Tool ( MRT): "Zoom Zero Day: 4+ Million Webcams & maybe an RCE?".
📝 Interested in more details? Read Jonathan's excellent writeup:
This re-install ‘feature’ continues to work to this day.” -Jonathan Leitschuh
“ This vulnerability allows any website to forcibly join a user to a Zoom call, with their video camera activated, without the user’s permission.Īdditionally, if you’ve ever installed the Zoom client and then uninstalled it, you still have a localhost web server on your machine that will happily re-install the Zoom client for you, without requiring any user interaction on your behalf besides visiting a webpage. In June 2019, the security researcher Jonathan Leitschuh discovered a trivially exploitable remote 0day vulnerability in the Zoom client for Mac, which “ allow any malicious website to enable your camera without your permission” 😱 Though Zoom is incredibly popular it has a rather dismal security and privacy track record. 📝 Though the new issues we'll discuss today remain unpatched, they both are local security issues.Īs such, to be successfully exploited they required that malware or an attacker already have a foothold on a macOS system.
0 kommentar(er)
