Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Serious Vulnerability in Zoom Video Conference App Could Let Websites Hijack Mac Webcams [Updated]
- Thread starter MacRumors
- Start date
- Sort by reaction score
Haven't tested it myself, but this suggests it's also using a similar implementation.
Edit: Looks like Zoom is going to remove the local server in the next update. They also cheekily hinted that other vid-con apps do something similar:
Last edited:
New version of Zoom seems to be out.
Current Release
July 9, 2019 Version 4.4.53932.0709
Download Type: Prompted
Download here: Download Center
New and Enhanced Features
Have updated and it no longer lists the port as open on my Mac.
Current Release
July 9, 2019 Version 4.4.53932.0709
Download Type: Prompted
Download here: Download Center
New and Enhanced Features
- General Features
- Option to uninstall Zoom
Zoom users can now uninstall the Zoom application and all of its components through the settings menu.
- Option to uninstall Zoom
- Removal of the local web server
Zoom will be discontinuing the use of a local web server on Mac and will be completely removed from the Zoom installation. - Minor Bug Fixes
Have updated and it no longer lists the port as open on my Mac.
I have a friend who keeps a piece of black tape over his camera when he's not using it. I thought that was a bit extreme, but now it seems that he was justifiably cautious, given that an app like Zoom can carelessly allow camera access.
The fact that Zoom's "background process that can re-install the Zoom client" is even more of a concern. Should any app that quietly resists uninstallation be considered malware?
The fact that Zoom's "background process that can re-install the Zoom client" is even more of a concern. Should any app that quietly resists uninstallation be considered malware?
For a while I've been looking for a way to cover my iMac camera when I'm not using it that doesn't involve tape/stickers. The only thing I've found are models for 3d printers, which I don't have. Right now I just use a bent piece of paper.
So the thing about this is that the camera LED is hardwired to the power for the camera itself. From (I believe) 2012 and later it’s impossible to turn on a Mac webcam without that light coming on as well...
Edit: Oops messed up the step number... and missed a colon in the lsof command
- Quit Zoom if it's currently running
- Run lsof -i :19421 in Terminal. If you see output, that means the local server is running. Grab the PID
- If Step 2 returns output, run kill <PID from step 1> (exclude the angle brackets, so your final command should be something like kill 12345)
- Uninstall the Zoom app
Can you please help. I used zoom once many months but uninstalled shortly after. I just opened terminal and ran the command lsof -i :19421 and sure enough ZoomOpene shows up. I then put kill <mypid> and it seems to be gone. But when I restarted my mac it is running again. How do I completely remove the program as I have already uninstalled it? This seems really bad since I can't even patch since I can't find Zoom anywhere on my computer anymore.
If you install the updated Zoom client it removes the unwanted parts, then you can simply uninstall the program itself. That’s what Zoom is saying anyway.
The following commands will kill and remove Zoom and its web server:
Code:
pkill ZoomOpener
rm -rf /Applications/zoom.us*
rm -rf ~/.zoomusGiven their cavalier attitude toward security, I'm blocking it at work completely. Our Macs are receiving the commands above from our MDM to ensure it's removed from all endpoints, and our web filter now blocks the Zoom website as spyware. Even with the patch, this is indicative of poor security across their entire organization IMO, and I'm not going to allow anyone to put my users in jeopardy.
Last edited:
