YoVDO

Zoom 0-Day - How Not to Handle a Vulnerability Report

Offered By: 0xdade via YouTube

Tags

ShmooCon Courses Communication Skills Courses Cybersecurity Courses Vulnerability Assessment Courses Software Supply Chain Security Courses

Course Description

Overview

Explore a detailed account of the 2019 Zoom 0-Day vulnerability disclosure in this conference talk from Shmoocon 2020. Delve into the discovery of a critical security flaw allowing malicious actors to activate Mac users' cameras without consent, and the hidden daemon that persisted after uninstallation. Follow the speaker's journey through the vulnerability reporting process, the decision to go public, and the escalating consequences that ultimately required intervention from Apple's security team. Gain insights into the complexities of responsible disclosure, corporate responses to security threats, and the potential ramifications of software vulnerabilities in widely-used applications.

Syllabus

Intro
Who is Jonathan
Why Zoom
Disclosure
Going Public
Zooms Response
Questions


Taught by

0xdade

Related Courses

Accountable Talk®: Conversation that Works
University of Pittsburgh via Coursera Introduction to Business Communication
Canvas Network Content Strategy for Professionals: Engaging Audiences
Northwestern University via Coursera La tutoría en la escuela
Miríadax La contabilidad, el lenguaje de los negocios
Miríadax