YoVDO

Zoom 0-Day - How Not to Handle a Vulnerability Report

Offered By: 0xdade via YouTube

Tags

ShmooCon Courses Communication Skills Courses Cybersecurity Courses Vulnerability Assessment Courses Software Supply Chain Security Courses

Course Description

Overview

Explore a detailed account of the 2019 Zoom 0-Day vulnerability disclosure in this conference talk from Shmoocon 2020. Delve into the discovery of a critical security flaw allowing malicious actors to activate Mac users' cameras without consent, and the hidden daemon that persisted after uninstallation. Follow the speaker's journey through the vulnerability reporting process, the decision to go public, and the escalating consequences that ultimately required intervention from Apple's security team. Gain insights into the complexities of responsible disclosure, corporate responses to security threats, and the potential ramifications of software vulnerabilities in widely-used applications.

Syllabus

Intro
Who is Jonathan
Why Zoom
Disclosure
Going Public
Zooms Response
Questions


Taught by

0xdade

Related Courses

CompTIA PenTest+ Certification
A Cloud Guru AWS SimuLearn: Cyber Security Threats
Amazon Web Services via AWS Skill Builder Ethical Hacking
Cabrillo College via California Community Colleges System Network Security
City College of San Francisco via California Community Colleges System Ethical Hacking
Chaffey College via California Community Colleges System