Zoom web conferencing service announced a vulnerability on Macs where users could be added to a Zoom meeting without being prompted, allowing for inadvertent video sharing.
Dedicated Desktop Support (DDS) Customers:
DDS addressed the vulnerability by deploying a software update at 3 p.m. today to DDS customers on CU Boulder campus networks. Customers not on CU Boulder campus networks need to connect to the VPN for a minimum of 30 minutes to receive the software update.
Non-DDS Customers:
Zoom will provide a software update this evening (mentioned under “JULY 9 PATCH”).
If you have questions regarding this vulnerability, please contact the IT Service Center at help@colorado.edu or 303-735-4357 (5-HELP).
Best Practice -- Disable Automatic Video Sharing in Zoom Meetings
As a best practice, OIT recommends that you disable automatic video sharing on Zoom. Follow these instructions to do so:
- Open Zoom application
- Click Settings button (gear icon near top right)
- Click Video section
- Check the box next to “Turn off my video when joining meeting”
