Remotely Hijacking Zoom Clients by David Wells.
From the post:
I would like to walkthrough a severe logic flaw vulnerability found in Zoom’s Desktop Conferencing Application. This logic flaw (CVE-2018–15715) affects Zoom clients for MacOS, Linux, and Windows and allows an attacker (doesn’t even have to be meeting attendee) to hijack various components of a live meeting such as forcefully enable desktop control permissions and send keystrokes to meeting attendees sharing their screen. Zoom has released an update for MacOS and Windows and users of Zoom should make sure they are running the most up-to-date version.
Great description of a vulnerability, even if Wells reports that Zoom servers now appear to be patched.
Telecommuting Trend Data from GlobalWorkplaceAnalytics.com leaves no doubt that remote work by employees is increasing, meaning so are avenues into corporate computer infrastructures.
To say nothing of moves towards telecommuting by the United States government, led by of all agencies, the IRS. Telecommuting Options in Government Jobs
Vulnerabilities in telecommuting and/or video conferencing software may result is a bountiful harvest of data. But you won’t know if you don’t look for them.