Zoom Rushes Patches for Two Zero-Day Flaws

Zoom Rushes Patches for Two Zero-Day Flaws

Zoom Vulnerabilities Give Attackers Full Control Over Computers

With most staff now working from home, any zero-day vulnerability impacting business critical telephone and conference software would be an absolute nightmare for IT professionals—and this is exactly what happened.

An ex-NSA hacker, Patrick Wardle, identified and disclosed two vulnerabilities to Zoom. Once exploited, the attacker can gain and maintain persistent access to the innards of a victim’s computer, allowing them to install malware, spyware, or gain access to the victims’ microphone and camera.

“Given Zoom’s privacy and security track record this should surprise absolutely zero people,” Wardle said in a blog post this week.

Use Syxsense to Stay Secure

You can find the latest version of Zoom available in your Syxsense console. As companies experience a 40% increase in cyberattacks with remote working, there’s never been a better time to enhance your patching and security strategy.

Syxsense allows you to manage and secure vulnerabilities exposed by open ports, disabled firewalls, ineffective user account policies, and security compliance violations from remote workers. Gain visibility into OS and third-party vulnerabilities while increasing cyber resilience through automated patch management and vulnerability scanning.

Experience the Power of Syxsense

Syxsense has created innovative and intuitive technology that sees and knows everything. Manage and secure your environment with a simple and powerful solution.