Our first Community Zoom Session
Mark Wieder
ahsoftware at sonic.net
Thu Apr 2 20:43:36 EDT 2020
On 4/2/20 5:15 PM, J. Landman Gay via use-livecode wrote:
> Your first link describes a different attack, since corrected. The one
> Bob posted is dated April 2 and the research link it includes is dated
> April 1. It is new info.
Yes but...
the new zero-days require physical access to the hardware.
I'd be more concerned about this vuln if I were running Windows.
Luckily there's a simple group policy or registry fix.
<https://www.bleepingcomputer.com/news/security/zoom-lets-attackers-steal-windows-credentials-run-programs-via-unc-links/>
--
Mark Wieder
ahsoftware at gmail.com
More information about the use-livecode
mailing list