Zoom found and announced a few critical vulnerabilities in the Zoom app which may affect users’ privacy, cause leaks of personal data (email addresses, chat history, profile photos, etc.), or unauthorized remote access to a computer.
To stay secure and protect your privacy, we suggest using Zoom via its web client OR upgrade your app to the latest patch 4.6.19253.0401 (Windows) as well as 4.6.9 (19273.0402) (macOS). As soon as you open the Zoom app, it will prompt you to run the update.
Be extra vigilant and follow these simple steps:
- If possible, use web client instead of the app.
- If web client doesn’t work for you, make sure you update Zoom app to the latest version (you can find information about the most recent releases on the official website).
- Never open up an unexpected file, even from a known contact — verify via phone or email if you believe a file shared with you is suspect.
- Scrutinize the Zoom link in your invitation: the Zoom link should send you to zoom.us, not zoom-meeting [dot] org or any other “strange” site .
- Only join meetings from known contacts
IF you are a host:
- Require a password for your meetings .
- Don’t make your meeting public .
- Disable file sharing in your meetings if it’s not required.
- When you are actively in a meeting and all your expected participants have arrived, you can “lock” the meeting to prevent anyone else from joining