Endpoint Security , Governance , Vulnerability Assessment & Penetration Testing (VA/PT)
Rare Move Made to Protect Against Future Exploitation Jeremy Kirk (jeremy_kirk) • July 11, 2019 Zoom founder and CEO Eric S. Yuan says the company "misjudged" a vulnerability report from a security researcher that prompted Apple to take action. (Photo: Zoom)Apple has taken an extraordinary move to protect its users from a yet-to-be-disclosed vulnerability that could compromise Macs that have the Zoom video conferencing software installed.
See Also: Webinar | The Future of Adaptive Authentication in Financial Services
Apple released a silent update that removes a clandestine web server Zoom installed in older versions of its software that can't be removed through a standard uninstall process. The update, first reported by TechCrunch, was confirmed to Information Security Media Group by Apple.
That left-behind component is vulnerable to a remote-code execution exploit that has yet to become public, Patrick Gray reported Wednesday on the Risky Business podcast. Zoom's software is installed on millions of Macs.
The update was likely made to Apple's Malware Removal Tool, which ships with macOS. Apple says in a support article that the tool can make security configuration and ..
Support the originator by clicking the read the rest link below.
