MY BRAND BOOK Zoom Messenger found vulnerable with Security Flaw

Zoom Messenger found vulnerable with Security Flaw

By MYBRANDBOOK

According to security experts, Zero-day vulnerabilities within the Zoom Messenger desktop client could allow hackers to execute random code on a victim’s machine.

Ethical hackers Daan Keuper and Thijs Alkemade from CompuTest Security demonstrated their exploit at hacking contest Pwn2Own, and were awarded a bug bounty of $200,000 by the video conferencing service.

Commenting on the exploit, Keuper said that while earlier Zoom vulnerabilities allowed attackers to infiltrate the calls, their exploit was a lot more serious as it allows attackers to take over the entire system.

The ethical hackers chained three vulnerabilities in the Zoom messenger to create their exploit. Even more alarming is the fact that they were able to take over the remote system running the Zoom client without any involvement from the victim; the exploit didn’t require the victim to click any links or open any attachments. Once successful, the duo had an almost complete control over the remote computer. They demonstrated several actions such as toggling the webcam and the microphone, gawking at the desktop, reading emails, and downloading their victim’s browser history.

Pwn2Own is a popular security conference where ethical hackers demonstrate zero-day vulnerabilities in popular devices and apps. Given the rise of remote collaboration tools, the conference organizers added the new Enterprise Communications category this year. Elsewhere in the conference another ethical hacker hacked into Microsoft Teams, again by exploiting a combination of vulnerabilities to execute arbitrary code, and earned himself a $200,000 bug bounty from Microsoft.

BREAKING NEWS

Elon Musk Merges X with xAI in $33 Billion Stock Deal...

Elon Musk has made waves once again by merging X (formerly Twitter) with...

India Strengthens Electronics Supply Chain with ₹22,919 Cr Manu...

The scheme aims to attract an investment of INR 59,350 Cr, resulting in pro...

Govt Drops Import Duty making EV Batteries cheaper...

The Centre is taking measures to counter the impact of US President Donald ...

CERT-In’s New Advisory Unveils Hidden Cyber Threats...

The advisory highlights critical vulnerabilities in AI models, outlines mul...

TECHNO TRENDS

Legal Battle Over IT Act Intensifies Amid Musk’s India Plans

The outcome of the legal dispute between X Corp and the Indian government c...

Wipro inks 10-year deal with Phoenix Group's ReAssure UK worth

The agreement, executed through Wipro and its 100% subsidiary,...

Centre announces that DPDP Rules nearing Finalisation by April

The government seeks to refine the rules for robust data protection, ensuri...

Home Ministry cracks down on PoS agents in digital arrest scam

Digital arrest scams are a growing cybercrime where victims are coerced or ...

E-Magazine

TECHNOTAINMENT

For 2nd Time, Kaspersky announced Mumbai Indians’ Official C

Hrithik Roshan to endorse RuPay as Brand Ambassador

RuPay is reportedly planning to feature Bollywood superstar Hrithik Rosha

India Today Group launches – AI Pop Stars

Staying true to our industry leadership position in using cutting-edge tech

MOVERS & SHAKERS

Cloudflare Promotes Goran Risticevic as VP & MD for APAC

TelioLabs ropes in Phaniraj V A as the Group CEO

TelioLabs has announced the onboarding of Phaniraj V A as its new Group CE

Wipro Appoints Amit Kumar as Managing Partner and Global Head

Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO), a leading technology s

OPEN YOUR EYES

It is time to protect your critical business priorities from attackers

COVID-19 Brings Opportunity For Businesses To Tide Over The Current Crisis

The dangers of phishing are becoming Top Concern for the CEOs

Building of a secure infrastructure is highly essential to stop malicious activity

Cyber Security, AI/ML & Public Cloud Top Priorities for CIOs

INTERVIEWS

Alcatel-Lucent Enterprise Carrying a 100 year legacy ahead

Alpha Max offers high end solutions in the network space to en

The vision at Alpha Max is to attain quality as the trademark and create a

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando stands out in the DPU (Data Processing Unit) market with its u

HOT PICK

ASUS ExpertCenter P500 Mini Tower Desktop PC's launched in Ind

MSI Announces the availability of RTX 50 series of laptops in

MSI, the innovative computing manufacturer in gaming, creator

Nothing Phone (3a) goes on sale today, starting at Rs 19,999

The phone was launched on March 4, featuring a 50MP main, ultra-wide, and t

MAKE IN INDIA BRANDS

VVDN TECHNOLOGIES

TALLY SOLUTIONS PVT. LTD.

DRUVA SOFTWARE PVT. LTD.

HP INDIA SALES PVT. LTD.

EMINENT CIO'S OF INDIA

AI TO IMPROVE INSIGHTS THROUGH AUGMENTED ANALYTICS, WHILE EDGE COMPUTING TO ALLOW REAL-TIME PROCESSING

For the fiscal year 2024-25, our organization has ...

AI AND DATA ANALYTICS REVOLUTIONIZING HEALTHCARE SERVICES

...

USING AI & BI OFFERINGS TO ADDRESS CLIENT NEEDS

In the fiscal year 2024-25, Assisto Technologies h...

ICONS OF INDIA

Icons Of India : MADHABI PURI BUCH

Madhabi Puri Buch is the first-female chairperson of India’s markets...

Icons Of India : Debjani Ghosh

Debjani Ghosh is the President of the National Association of Software...

Icons Of India : Bhavish Aggarwal

Indian entrepreneur Bhavish Aggarwal is the CEO of Ola, India’s larg...

PARTNER SPEAKERS

A Trusted IT Partner Renowned For Reliability, Expertise, and Customer-Centricity

Fast paced changes in digital technology and constant innovations are impactin...

Fostering Positive Relationships and Enhancing Customer Satisfaction

Bloom Electronics’ data-driven insights for strategic brand decision and bra...

Ingram Micro Xvantage Strengthening Partners To Do More In The Digital Era

ngram Micro Xvantage offers a wide range of benefits for partners, such as a s...

PSU

LIC - Life Insurance Corporation of India

LIC is the largest state-owned life insurance company in India...

STPI - Software Technology Parks of India

STPI promotes and facilitates the growth of the IT and ITES industry i...

BEL - Bharat Electronics Limited

BEL is an Indian Government-owned aerospace and defence electronics co...

VIDEOS

Top 25 Brands

Most Trusted Brands 2024: Nvidia Corporation

NVIDIA, founded in 1993, has evolved significantly over the years. Initially k...

Most Trusted Brands 2024: HCL TECHNOLOGIES LTD.

HCL Technologies Ltd. (HCLTech) has been at the forefront of technological inn...

Most Trusted Brands 2024: Apple India Pvt. Ltd.

five decades after its founding, Apple has redefined modern computing, emphasi...

Global Indian industry

Indian Tech Talent Excelling The Tech World - JAYASHREE ULLAL, President and CEO - Arista Network

Jayshree V. Ullal is a British-American billionaire businesswoman, ser...

Indian Tech Talent Excelling The Tech World - RAVI KUMAR S, CEO- Cognizant

Ravi Kumar S, appointed as CEO of Cognizant in January 2023, sets the ...

Indian Tech Talent Excelling The Tech World - REVATHI ADVAITHI, CEO- Flex

Revathi Advaithi, the CEO of Flex, is a dynamic leader driving growth ...

ITFORUM 2025

STARNITE AWARDS 2024

CMO of the Year

WOMEN LEADERSHIP

IMAGE GALLERY

TRENDS IN TECHNOLOGY