Last week a security researcher publicly disclosed a vulnerability in the Zoom application for Mac computers in which any website could forcibly join a user to a Zoom call without notice or knowledge of the user thereby giving access to the user’s camera and microphone without the user’s knowledge.
Zoom and Apple have addressed the issue in different ways. Apple has pushed a silent update to remove the vulnerable component. Separately, Zoom released a fixed Zoom app version for Mac.
All Zoom users on Mac should make sure that both their Mac OS is updated, as well as the Zoom application.
This is a great reminder to make sure that your system and applications are updated regularly. Keeping your systems updated is a free and effective way to increase the security of your systems.
Stay vigilant out there.
For more information on the vulnerability and updates see the following: