Zoom has identified a zero-day vulnerability in its Zoom Meeting Client for Mac. Zoom released an emergency patch today to address this security issue. IT requests you upgrade your Mac client as soon as possible to version Version: 4.4.4 (53932.0709). The vulnerability allows any website to open a video-enabled call on a Mac with the Zoom app installed. Information has been posted on several sites:
Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website!
Serious Zoom security flaw could let websites hijack Mac cameras
Zoom fixes major Mac webcam security flaw with emergency patch
What you should do:
Download the latest version from Zoom download page OR
Launch Zoom and under “zoom.us” menu select Check for Updates and install
