
Update Your Zoom App Now to Prevent Account Takeovers
Zoom discovered a critical security flaw in its Windows app that could let attackers hijack your account. Update your Zoom software immediately.
Source
BleepingComputer
Original headline: Zoom warns of critical account takeover vulnerability
Plain-English summary by GetCyberRight. Read the full report at the source above.
Zoom has announced a critical security vulnerability in its desktop application for Windows computers. This flaw exists in both the main Zoom client and the software development kit that other programs use to add Zoom features. The vulnerability could allow an unauthenticated attacker to hijack user accounts.
This means someone could potentially take over your Zoom account without needing your password first. This affects families who use Zoom on Windows computers. If you or your children use Zoom for school, work, telehealth appointments, or staying in touch with family, your account could be at risk. An attacker who hijacks your Zoom account could join your meetings without permission, access your contact list, read your chat history, or impersonate you in conversations with others. Mac, iOS, and Android users should still update but face less immediate risk from this specific vulnerability. Take action right now to protect your Zoom account. First, open the Zoom application on your Windows computer. Second, click your profile picture in the top right corner and select "Check for Updates." Third, install any available updates immediately. Fourth, after updating, change your Zoom password as a precaution. Fifth, enable two factor authentication on your Zoom account by logging into the Zoom website, going to your profile settings, and turning on this security feature. Going forward, update Zoom and all your communication apps regularly. Enable automatic updates in Zoom's settings so future security patches install without you needing to remember. Apply this same practice to all video calling apps your family uses, including Teams, Skype, FaceTime, or Google Meet. Never click links to join Zoom meetings from unexpected emails or text messages. Instead, go directly to the Zoom app or website to join scheduled meetings. These habits will keep your video calls secure and private.
Curated from trusted cybersecurity sources by GetCyberRight
Source: BleepingComputerStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Software Developers Targeted in Supply Chain Attack: Why This Matters for Everyone
Hackers compromised developer tools to spread malware through trusted software channels. The programs you use daily could be affected by these attacks on the software supply chain.
2 min read
Password Attacks Now Leading Cause of Ransomware: Strengthen Your Login Security Today
Email based attacks on passwords overtook software vulnerabilities as the top way criminals launch ransomware. Even accounts with extra security failed to stop these attacks.
2 min read
Stolen Passwords Now Lead Cause of Ransomware Attacks
Email attacks that steal login credentials have become the top way ransomware gets into systems, even when two-factor authentication is turned on.
2 min read
Zoom Security Alert: Update Your App to Protect Your Account
A serious flaw in Zoom for Windows could let attackers take over your account without your password. If you use Zoom on Windows, update the app right away.
2 min read