Zoom Vulnerability Impacts Macs

Last Updated: 07/09/2019

Zoom web conferencing service announced a vulnerability on Macs where users could be added to a Zoom meeting without being prompted, allowing for inadvertent video sharing. 

Dedicated Desktop Support (DDS) Customers:

DDS addressed the vulnerability by deploying a software update at 3 p.m. today to DDS customers on CU Boulder campus networks. Customers not on CU Boulder campus networks need to connect to the VPN for a minimum of 30 minutes to receive the software update. 

Non-DDS Customers:

Zoom will provide a software update this evening (mentioned under “JULY 9 PATCH”).  

If you have questions regarding this vulnerability, please contact the IT Service Center at help@colorado.edu or 303-735-4357 (5-HELP).   

Best Practice -- Disable Automatic Video Sharing in Zoom Meetings

As a best practice, OIT recommends that you disable automatic video sharing on Zoom. Follow these instructions to do so:

  1. Open Zoom application
  2. Click Settings button (gear icon near top right)
  3. Click Video section 
  4. Check the box next to “Turn off my video when joining meeting”