Obsessed with technology?
Subscribe to the latest tech news as well as exciting promotions from us and our partners!
By subscribing, you indicate that you have read & understood the SPH's Privacy Policy and PDPA Statement.
News
News Categories

Zoom zero-day bugs allow hackers to hijack Mac's webcams, microphone, and gain root access

By Kenny Yeo - on 2 Apr 2020, 9:23am

Zoom zero-day bugs allow hackers to hijack Mac's webcams, microphone, and gain root access

The ongoing coronavirus pandemic has forced everyone to drastically change their work habits and this has led to a surge in use of the video conferencing app Zoom.

Thus far, Zoom has been an invaluable tool for many businesses. However, there are numerous questions about its security.

Just recently, it was discovered that Zoom meetings are actually not end-to-end encrypted.

And now, Patrick Wardle, an ex-NSA hacker and current principle security researcher at Jamf, has discovered two zero-day bugs that could allow a hacker to takeover a Mac's webcam, microphone, and even gain root access.

Wardle explains the bugs in detail on his blog, Objective-See, but the crux of it is that a hacker with local access can simply replace or subvert the runwithroot script during an install to gain root access to the system.

At the end of it all, Wardle writes:

So, what to do? Honestly, if you care about your security and/or privacy perhaps stop using Zoom. And if using Zoom is a must, I’ve written several free tools that may help detect these attacks.

To learn about the bugs in detail and the apps you can use to protect yourself, hit the link below.

Source: Objective-See via 9to5 Mac