Apple informed us that it has sent out a silent security update to Macs to remove software that was automatically installed by RingCentral and Zhumu. These video conferencing apps both used technology from Zoom — they’re essentially white labels — and thus they also had Zoom’s security flaws. Specifically, they installed secondary pieces of software that could take commands from websites to open up your webcam in a video conference without your intervention.
Even uninstalling those apps wouldn’t remove that secondary web server, which would mean that many users wouldn’t get the software vendors’ updates fixing the issue. That means Apple is best positioned to remove the offending software, and it is. Apple intends to fix the issue for…
from The Verge – All Posts https://ift.tt/2jHzyz0