Hello, welcome to the Wednesday, July 17th, 2019 edition of the Sansomit Stormeners Stormcast. My name is

Johannes Ulrich. And today I'm recording from Svindon, England. We got another follow-up to the

Zoom vulnerability on Mac OS. Last week, Zoom and Apple released patches to address serious vulnerability in this video conferencing

software, mostly centered around the web server that was installed by Zoom and opened up

the system to vulnerabilities.

Apple even went as far as to label the Zoom web server as malware, which caused it to be removed

automatically.

Now, in addition to the main Zoom video conference software, there are also co-branded versions of the software

published by Ring Central and Sumu. These versions of the software had the same

problem but weren't covered by the initial set of patches and by Apple's malware

removal tool. Apple now added additional signatures to its tool, so these particular partner apps, as

Zoom calls them, should also be cleaned up.

Remember, just uninstalling Zoom is not going to uninstall the web server, so you have to remove that web server separately if you're

trying to clean up this particular mess by hand.

And Lenovo patched a critical vulnerability in the IOMega network storage devices.

If you have one of those IOM Omega branded devices, which are now sold

via Lenovo, please check for the update on Lenovo's website. The problem here is an API. Both

White Hat security and vertical structures reported as vulnerability to Lenovo

and essentially this API allows unrestricted, unauthenticated access to all files stored on the device.

So while you need to log in if you use the normal web interface, this API

allows direct access bypassing any authentication. If you ever sort of looked a little bit at

the back end of a lot of airline reservation systems, you may have come across the name

...