Zoom Updates | Data Leaks Galore
CyberInsights #57
Zoom Vulnerability & Update
Yet another software bug? This is different.
Zoom said that there is a vulnerability in the software update process. When there is an update to be installed, your Mac asks for permission to make changes to the system. All users accept this because they are installing an update themselves. However, hackers could ‘trick’ zoom into installing a malicious file, which the user would happily accept.
Read more about it here.
Take Action:
If you are a Mac environment, ask all users to update their Zoom. Watch out for CVEs that have malicious installer files. These catch users at their most vulnerable.
Multiple Data Leaks
Like they say - never a dull day in cybersecurity. Is there?
Twitter leaked 5.4 million account information (Some of it phone numbers too!). It is a problem for people using pseudonyms. Imagine the case if you are celebrity! Or you are journalist in a difficult regime.
AT&T leaked 23 million user details. They claimed the leak was not from them, but the data is of AT&T users as per this article.
BharatPay, a financial services provider in India leaked personal information of 37k users.
Take Action:
If your users have accounts here, ask them to change passwords. Twitter users should also be told to disassociate their phone numbers and emails with their Twitter handles.
Enjoyed reading? Receive this in your email every week.