Security researchers have discovered a zero-day vulnerability within the Windows Client for Zoom which might permit hackers to take over your PC in case you click on on a Zoom hyperlink.
Fortunately for many Windows customers, the hack is barely exploitable on Windows 7 and earlier, however a 1/three of Windows customers are sadly nonetheless on this platform.
The vulnerability was reported to Zoom by safety firm opatch and has not been publicly launched. It works on a totally patched model of Windows 7, which is after all at present unsupported by Microsoft, even for safety updates.
Fortunately, Zoom has been fast to react to the problem, saying:
“Zoom takes all reports of potential security vulnerabilities seriously. This morning we received a report of an issue impacting users running Windows 7 and older. We have confirmed this issue and are currently working on a patch to quickly resolve it.”
The firm has now launched a repair, model 5.1.three of the app, saying:
“Users can help keep themselves secure by applying current updates or downloading the latest software from https://zoom.us/download.”
The difficulty is an object lesson for why you will need to preserve your working system present, with Timothy Chiu, vice-president of promoting at K2 Cyber Security, saying:
“It’s not enough to have just the application up to date. In this case, Zoom may be able to fix their code, but it’s not likely any help will come from Microsoft.”