Connect with us

    Hi, what are you looking for?

    News

    Zoom Users Advised to Update Software After Vulnerabilities Found

    NCC

    The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has advised users of videotelephony platform, Zoom, to install the latest update of the software from its publisher’s official website following the discovery of vulnerabilities that allows a remote attacker to exploit the app.

     

    In advisory issued on Wednesday, NCC-CSIRT reported that the Indian Computer Emergency Response Team (CERT-In) found several flaws in Zoom product.

    The videotelephony platform became popular for virtual meetings in the wake of the COVID-19 Pandemic with more than 300 million daily users.

    According to the NCC-CSIRT advisory, “A remote attacker could exploit the vulnerabilities to circumvent implemented security measures and cause a denial of service on the targeted machine.”

    It noted that “These vulnerabilities exist owing to incorrect access control implementation in Zoom On-Premises Meeting Connector MMR prior to version 4.8.20220815.130. A remote attacker could exploit these flaws to join a meeting they were not permitted to attend without being seen by the other attendees.

    “They can also access audio and video feeds from meetings they were not permitted to attend, as well as interrupt other sessions.”

    Successful exploit of these vulnerabilities could allow an unauthorized remote authenticated user to bypass implemented security limitations on the targeted system.

    The Computer Security Incident Response Team (CSIRT) is the telecom sector’s cyber security incidence centre set up by the NCC to focus on incidents in the telecom sector and as they may affect telecom consumers and citizens at large.

    The CSIRT also work collaboratively with the Nigeria Computer Emergency Response Team (ngCERT), established by the Federal Government to reduce the volume of future computer risks incidents by preparing, protecting, and securing Nigerian cyberspace to forestall attacks, and problems or related events.

    Loading

    Spread the love
    Click to comment

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    ad

    You May Also Like

    Opinion

    Socio-Economic Rights and Accountability Project (SERAP) has called on the leadership of the National Assembly to investigate the alleged allocation of more than ₦1.3...

    News

    Zedvance Finance Limited has appointed Professor Pius ‘Deji’ Olanrewaju as Chairman of its Board of Directors, effective July 1, subject to the approval of...

    News

    Operatives of the National Drug Law Enforcement Agency (NDLEA) have arrested a 67-year-old Nigerian-British grandmother, Mrs. Mary Yetunde Barek, for allegedly attempting to smuggle...

    Entertainment

    U.S. President Donald Trump is reportedly considering granting presidential pardons to several high-profile convicts, including music mogul Sean “Diddy” Combs and Grammy-winning rapper Prakazrel...