Data: CASIE
Negative Trigger
security
flaws
that
’
s
circulating
Vulnerability-related.PatchVulnerability
this
week
.
The
research
arm
of
the
Columbia-based
cybersecurity
company
discovered
Vulnerability-related.DiscoverVulnerability
a
vulnerability
in
Zoom
’
s
conferencing
platform
that
would
allow
attackers
to
take
control
of
a
user
’
s
desktop
remotely
during
a
meeting
.
After
being
alerted
,
Tenable
said
that
Zoom
quickly
updated
Vulnerability-related.PatchVulnerability
the
software
.
According
to
Tenable
,
the
security
flaw
,
if
exploited
Vulnerability-related.DiscoverVulnerability
,
would
allow
attackers
to
do
the
following
:
Hijack
control
of
a
screen
,
allowing
them
to
download
and
execute
malware
.
Impersonate
others
in
the
meeting
through
chat
messages
.
Kick
out
other
attendees
of
the
meeting
.
A
blog
post
from
the
company
states
the
vulnerability
was discovered
Vulnerability-related.DiscoverVulnerability
by
Tenable
’
s
David
Wells
.
“
This
impacts
both
one-on-one
(
P2P
)
meetings
as
well
as
group
meetings
streamed
through
Zoom
servers
,
”
the
blog
post
states
,
adding
that
the
vulnerability
could
also
be exploited
Vulnerability-related.DiscoverVulnerability
over
Wide
Area
Network
(
WAN
)
.
The
vulnerability
could
’
ve
put
750,000
companies
that
use
Zoom
at
risk
.
To
fix
Vulnerability-related.PatchVulnerability
the
vulnerability
,
Zoom
patched
Vulnerability-related.PatchVulnerability
servers
and
released
Vulnerability-related.PatchVulnerability
new
versions
of
the
software
.
The
company
is
urging
users
to
ensure
their
software
is
up-to-date
.
This
vulnerability
is
the
perfect
example
of
the
cyber
attack
surface
that
is
expanded
by
seemingly
innocuous
services
,
like
Zoom
,
”
Tenable
CTO
Renaud
Deraison
said
in
a
statement
.