Instapundit » Blog Archive » PRIVACY: Two more macOS Zoom flaws surface, as lawsuit & government probe loom. The second flaw, …

April 1, 2020

PRIVACY: Two more macOS Zoom flaws surface, as lawsuit & government probe loom.

The second flaw, which is arguably more concerning, allows a local user or piece of malware to piggyback on Zoom’s camera and microphone permissions. An attacker can inject malicious code into Zoom’s process space and “inherit” camera and microphone permissions, allowing them to hijack them without a user’s knowledge.

While local exploits like these typically require physical access to a computer, they’re usually much more common and difficult to prevent should the rest of the criteria that are needed are fulfilled.
…
The class action, filed in the U.S. District Court for the Northern District of California, alleges that Zoom gave personal user information to third parties without being explicitly clear about the data-sharing practices, CBS News reported. New York Attorney General Letitia James has also launched a probe into Zoom’s privacy policies.

In a separate development, Zoom may also be inadvertently leaking user email addresses and photos to complete strangers, according to Motherboard.

It’s pretty safe to conclude that Zoom is Chinese spyware masquerading as a videoconferencing app.

InstaPundit is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.com.