Govt warns Zoom users in India about big threat

tech.hindustantimes.com:

A severe security threat warning has been issued for video calling platform Zoom users regarding a severe security threat. The Indian Computer Emergency Response Team (Cert-In) has issued a warning for multiple high-severity vulnerabilities affecting the Zoom platform. The agency has flagged a security vulnerability that lets remote attackers join a meeting without appearing to the other participants. The vulnerability is marked as ‘medium' as it allows hackers to gain access to the victim's computer. If successfully breached, hackers can access audio and video feeds of a meeting and "cause other meeting disruptions" without letting participants know. They may also obtain crucial information shared during the audio or video call.

As per the reports, three vulnerabilities dubbed as CVE-2022-28758, CVE-2022-28759, and CVE-2022-28760 affect the Zoom's on-premise meeting Connector MMR before version 4.8.20220815.130. Zoom raised the vulnerability on September 13, CERT-In issued the advisory on September 19 that advised users to update to the latest version of Zoom on their devices. Here's how you can do it.

To update Zoom on your laptop, sign in to the Zoom desktop client. 

Click on your profile picture and check for updates. 

If the new version of Zoom available, download and install it on your laptop/PC. 

If you're a smartphone user, just go to the Google Play or Apple App Store and check the latest versions of the Zoom app.

Recently, CERT-In has flagged severe security threat warning for Windows 10 and Windows 11 users regarding a severe security patch. The agency had warned that the security vulnerability can affect Windows Defender, which secures Windows from malware, viruses, etc. The vulnerability was marked as