The flaw was due, in part, to an attacker potentially being able to guess a valid Zoom meeting ID, according to Alexander Chailytko, a research and innovation manager at Check Point, who notes that all Zoom meeting IDs have nine to 11 digits.
Zoom adds: "We thank the Check Point team for sharing their research and collaborating with us.” Guessing Meeting IDs Zoom says it fixed the flaws found by Check Point in August 2019, and that it has “continued to add additional features and functionalities to further strengthen our platform." Poorly secured systems can give hackers remote access to microphones and video cameras, including in board rooms, resulting in the exposure of sensitive or confidential information. Vulnerabilities in conferencing software are notable because of the pervasiveness of such systems in businesses. See Also: JavaScript and Blockchain: Technologies You Can't Ignore The attack, however, is no longer possible thanks to Zoom having put mitigations in place. The vulnerability was found by Check Point Software Technologies, which published its findings. Zoom Video Communications has fixed a vulnerability that - under certain conditions - could have allowed an uninvited third party to guess a Zoom meeting ID and join a conference call.
0 kommentar(er)
