Zoom’s latest update on Mac includes a fix for a dangerous security flaw
Share this @internewscast.com


Zoom has issued a patch for a bug on macOS that could allow a hacker to take control of a user’s operating system (via MacRumors). In an update on its security bulletin, Zoom acknowledges the issue (CVE-2022-28756) and says a fix is included in version 5.11.5 of the app on Mac, which you can (and should) download now.

Patrick Wardle, a security researcher and founder of the Objective-See Foundation, a nonprofit that creates open-source macOS security tools, first uncovered the flaw and presented it at the Def Con hacking conference last week. My colleague, Corin Faife, attended the event and reported on Wardle’s findings.

As Corin explains, the exploit targets the Zoom installer, which requires special user permissions to run. By leveraging this tool, Wardle found that hackers could essentially “trick” Zoom into installing a malicious program by putting Zoom’s cryptographic signature on the package. From here, attackers can then gain further access to a user’s system, letting them modify, delete, or add files on the device.

“Mahalos to Zoom for the (incredibly) quick fix!” Wardle said in response to Zoom’s update. “Reversing the patch, we see the Zoom installer now invokes lchown to update the permissions of the update .pkg, thus preventing malicious subversion.”

You can install the 5.11.5 update on Zoom by first opening the app on your Mac and hitting zoom.us (this might be different depending on what country you’re in) from the menu bar at the top of your screen. Then, select Check for updates, and if one’s available, Zoom will display a window with the latest app version, along with details about what’s changing. From here, select Update to begin the download.



Share this @internewscast.com
You May Also Like

Bizarre ‘mailjack’ bug can CRASH your iPhone with a single email

EXPERTS have uncovered a strange bug that is making people’s iPhone mailbox…

Inside Mark Zuckerberg’s bizarre ‘eat-what-you-kill’ diet as Facebook boss prepares for MMA match with training vid

MARK Zuckerberg continues to fascinate onlookers after he showed off his fighting…

How to link books to videos on TikTok

IF you love books and you’re on TikTok there’s a high chance…

WhatsApp announces new feature that will change how you call your mates for good

GROUP video calls on WhatsApp are about to get a lot more…

They Cloned Tyrone’s onto something wild in its first trailer

If you’re using crash detection on the iPhone 14, invest in a…

Netflix’s new Glass Onion: A Knives Out Mystery clip is full of devious puzzles

Image: Netflix At the beginning of the month Netflix gave us our…

The Last of Us’ first trailer is bleak and brutal

Pedro Pascal as Joel in The Last of Us. | HBO Apropos…

The US wants to become a hydrogen production powerhouse

One of the world’s first plants for the production of green hydrogen…