What pains me about Zoom being such sleazeballs when it comes to both security and privacy is just how unnecessary it is. They have good fundamental tech! But as the skeletons keep falling out of the closet, it’s clear that the organization is fundamentally corrupt.
In case you weren’t caught up, here’s today’s story about them deceiving people into thinking it’s end-to-end encrypted when it’s not. https://twitter.com/trevortimm/status/1244990579705958400?s=21 https://twitter.com/trevortimm/status/1244990579705958400
Here’s how they’re abusing the OSX installer to avoid need you to authorize the installation (a good malware trick). https://twitter.com/c1truz_/status/1244737672930824193?s=21 https://twitter.com/c1truz_/status/1244737672930824193
Here’s another example from just last year where they created a security hole in OSX so bad Apple had to issue an operating system patch. Again, not merely by mistake, but out of malice to sidestep reasonable OS protections. https://www.buzzfeednews.com/article/nicolenguyen/zoom-webcam-hacker-watching-you-vulnerability
And now that Zoom has taught everyone just to click on native installers that work like malware, surprise, surprise, real malware is piggybacking on those habits. https://thehackernews.com/2020/03/zoom-video-coronavirus.html
And then there’s the questionable snitch feature they built to let bosses know which employees to reprimand for not paying attention to their boring presentations. https://twitter.com/dhh/status/1244750301975855104?s=21 https://twitter.com/dhh/status/1244750301975855104
Just keeping this thread up to date with the latest, such that there's a coherent summary of the shenanigans and consequences: https://twitter.com/dhh/status/1245023273844236288?s=20
Oh, and how would you like to get zoom bombed by some dude intent on playing porn during your meeting? https://blockclubchicago.org/2020/03/31/chicago-politicians-zoom-call-interrupted-by-porn-streaming-hijackers/
Or have your camera or mic taken over by hackers because Zoom left the door open when they broke into the OSX install protections. https://twitter.com/dhh/status/1245360292118188032?s=21 https://twitter.com/dhh/status/1245360292118188032
The hits keep coming: https://twitter.com/dhh/status/1245366301167480833?s=21 https://twitter.com/dhh/status/1245366301167480833
Keeping that record going. https://twitter.com/MoriartyCR/status/1245875244302204936
Yoinks. It's not just live Zoombombs, it's also all the Zoom mines left unexploded and ready to be exploited. https://twitter.com/drewharwell/status/1246110817013108736