mdoss
About
- Username
- mdoss
- Joined
- Visits
- 26
- Last Active
- Roles
- member
- Points
- 26
- Badges
- 0
- Posts
- 40
Reactions
-
Two more macOS Zoom flaws surface, as lawsuit & government probe loom
AppleInsider said:Security vulnerabilities
Patrick Wardle, a macOS security researcher and former hacker for the National Security Agency, has uncovered two new local security vulnerabilities in the latest version of the Mac Zoom client.
The first flaw relies on the "shady" way that Zoom installs itself on a Mac, which we've previously covered. By taking advantage of the installation process, which is done without user interaction, a user or piece of malware with low-level privileges can gain root access to a computer -- the highest level of privilege.
The second flaw, which is arguably more concerning, allows a local user or piece of malware to piggyback on Zoom's camera and microphone permissions. An attacker can inject malicious code into Zoom's process space and "inherit" camera and microphone permissions, allowing them to hijack them without a user's knowledge.
While local exploits like these typically require physical access to a computer, they're usually much more common and difficult to prevent should the rest of the criteria that are needed are fulfilled.
This isn't Zoom's first security blunder, either. In 2019, a security researcher found a zero-day vulnerability in the app that could have allowed malicious websites to activate and view a Mac webcam without user knowledge.Probably a silly question, but please bear with me: What if I enable Guest Mode in my Mac, and "install" and use zoom from there? All installations there are temporary, no root user access needed, and everything gets removed when I log out. Will that not take care of the latest vulnerability (that Zoom forces root mode etc.)?Thank you and cheers
-
Apple says a common charger would handicap innovation, inflate waste
I see multiple responses here about Apple doing away completely with any charging port and depending purely on wireless charging. I see one issue with that. There are people who go on long road trips in their vehicles. Those people depend on their car's USB port to charge their devices.It would be easier to carry a cable with them instead of carrying a charging mat, because not all vehicles have proper flat spaces to place these charging mats and the phones without slipping. Plus, how would the charging mat itself be charged or powered in the car?Cheers -
Apple releases first beta for macOS Catalina 10.15.2
I hope they fix the synching issues. right now it takes hours, and it does not sync photos even though it does not give any errors; and there's no indication of what's happening with the synch (copying x out of y photos, copying x out of y songs, etc.).I believe that anything else in terms of features or tweaks or emojis etc. can wait until this is properly resolved.Cheers
-
Everything new in iOS 13 beta 7: 3D Touch, icon tweaks, more
Well, I was wondering if they have or will ever fix one glaring UI inconsistency in the Clock app:
In "Alarm", the Snooze button is big and centre while the Stop button is small and at the bottom; but in "Timer", it is reversed - the Snooze button is small and at the bottom while the Stop button is big and centre.
The issue with this is, I every time I use the timer, I end up hitting Snooze instead of Stop because I m so used to the Alarm where the Stop button is at the bottom.
Cheers
-
How to use Spaces, Apple's mostly ignored macOS Mojave productivity feature
OK, the article keeps mentioning four-finger swipe; and I think one person here also mentioned it.
Well, it works with the three-finger swipe, no need for four fingers. Three fingers up works exactly the same as four fingers up; same with Left and Right.
Cheers
