It is known that the coronavirus pandemic is causing every office all over the world to be shut down. But as they say, the show must go on meaning that the work needs to be continued. For this reason, most of the office employees are currently working from home.
This is applicable of course to the companies that can do their work from home. This also means meetings have to take place virtually and video conferencing apps are needed for that. Now, there are plenty of apps for that but Zoom has emerged out to be the best in this respect.
While all is going well for Zoom and millions are using it at the moment and the company also reported that they are seeing millions of new installs every week, there is a problem according to this report.
It is found out that Zoom has a vulnerability which is causing the private information of Zoom users being leaked to strangers.
It was reported by Mspoweruser that Zoom is leaking Windows Login credentials to anyone you are chatting with.
Vice has now published a report that identifies another flaw in Zoom. Their claim is that Zoom is “leaking email addresses, user photos, and allowing some users to initiate a video call with strangers”.
Now, this is a flaw in Zoom’s handling of contacts and the way it identifies people working for the same organization even if they are not.
It is revealed that Zoom is “treating some of the private domains as they were a part of a company and as such, it’s adding thousands of random people to the pool as if they all worked for the same company, exposing their personal information to one another”.
This is a problem with Zoom’s “company directory” setting which pools every user with the same domain together for easier management.