Skip to main content

Zoom just fixed a major security flaw on Mac. Here’s why you should update now

If you have Zoom installed on your MacBook, you’ll want to update the app right now. Zoom spent the weekend patching a major security flaw in its Mac app, and the update is available right now.

According to The Verge, it all began at Def Con, a computer security and hacker conference in Las Vegas. The founder of the security non-profit Objective-See and an ex-NSA security analyst, Patrick Wardle, took to the stage on Friday and presented a stunning find: a massive security vulnerability in the Zoom installer for MacBooks.

The Logitech Brio 4K Pro attached to a Macbook.
Image used with permission by copyright holder

The exploit allowed a threat actor to take control of someone’s Mac through the Zoom app, right down to the root level of the machine. The Zoom package installer used a weak security certificate test and any file with the same name as the official Zoom package could easily bypass the test. At this level, the MacBook recognizes the hacker as a “superuser” who can then read, change or create any file, including adding other malware to the system.

Frustratingly, Wardle had discovered the security threat back in December and had informed Zoom of his findings. Wardle said Zoom didn’t take him seriously and released a patch after a month, which contained another security bug. He informed Zoom of this second bug, and more importantly, of the first bug not being fixed. Zoom sat on it.

Wardle decided to go public with his findings at Def Con. He had followed responsible disclosure protocols, which gives companies time to fix bugs, and after eight months of inaction, he felt he had to warn others. Zoom released a small patch a few weeks before the conference but Wardle said the vulnerability was still present.

This isn’t the first time Zoom has been criticized for lax security. In 2020 Wardle discovered a Mac vulnerability in Zoom which allowed cameras and microphones to be hijacked. Zoom was also found to have been sending user data to Facebook, and then the US Department of Justice filed charges against a Zoom executive for collusion with the Chinese government.

Zoom spent the weekend working on a new patch following Wardle’s presentation, and it is now available. Version 5.11.5 is a free update for Mac-based Zoom installs and is available now.

If you would prefer to use a different video conferencing platform, check out our handy guide to Microsoft Teams.

Editors' Recommendations

Nathan Drescher
Former Digital Trends Contributor
Nathan Drescher is a freelance journalist and writer from Ottawa, Canada. He's been writing about technology from around the…
Whatever you do, don’t buy a MacBook Air right now
Apple's 15-inch MacBook Air placed on a desk with its lid closed.

Got your eye on a shiny new MacBook Air? We can’t blame you, they're fantastic laptops. But before you pull the trigger, you should consider holding off for a few more weeks.

At some point in March, Apple is expected to unveil a new generation of the MacBook Air, either at an event or via a press release. This forthcoming laptop will reportedly come loaded with Apple’s new M3 chip, giving the MacBook Air a notable performance boost.

Read more
A YouTuber created a truly bezel-less MacBook
This MacBook has no bezels, thanks to Luke Miani's screen removal and Vision Pro replacement.

We've all seen the concept art of futuristic MacBooks that completely eliminate the bezels around the screen. Those are pure fantasy, even though Apple has significantly reduced bezel thickness on its most recent MacBooks.

However, those millimeters of wasted screen space on a MacBook can be infuriating, especially compared to the concepts out there.

Read more
5 things you should never do with your MacBook
Apple's 15-inch MacBook Air placed on a desk.

All of Apple’s best MacBooks are well-known for their superb build quality and remarkable longevity. But that doesn’t mean they’re indestructible, and there are plenty of things you can do to a MacBook that will significantly shorten its lifespan.

If you want to avoid ruining your Apple laptop and having to shell out for an expensive repair or replacement, you should be sure to avoid doing any of the things listed in this article. Steer clear of them and you’ll enjoy years of great usage out of your device, with far fewer hitches along the way.
Don’t let temps get too hot

Read more