Some of the best alternative video conferencing and chat software are: ( Update: A day after we published this report, Zoom apologies for falling short of privacy and security expectations and released an updated version if it software to patch recently reported multiple security issues, including UNC path injection.) Zoom has already been notified of this bug, but since the flaw has not yet been patched, users are advised to either use an alternative video conferencing software or Zoom in their web browsers instead of installing a dedicated client app on their systems. In addition, another security researcher going by the name ' pwnsdx' on Twitter shared another trick with The Hacker News that could let attackers hide malicious links when displayed at the recipients' end, potentially making it look more convincing and practical.
To be noted, to exploit this issue, an attacker must be aware of the Windows username for the targeted user, which, however, can easily be obtained using the first SMBRelay attack. Discover the Hidden Dangers of Third-Party SaaS AppsĪre you aware of the risks associated with third-party app access to your company's SaaS apps? Join our webinar to learn about the types of permissions being granted and how to minimize risk.
0 kommentar(er)
