Jump to content

Welcome to ExtremeHW

Welcome to ExtremeHW, register to take part in our community, don't worry this is a simple FREE process that requires minimal information for you to signup.

 

Registered users can: 

  • Start new topics and reply to others.
  • Show off your PC using our Rig Creator feature.
  • Subscribe to topics and forums to get updates.
  • Get your own profile page to customize.
  • Send personal messages to other members.
  • Take advantage of site exclusive features.
  • Upgrade to Premium to unlock additional sites features.
IGNORED

Zoom found leaking personal user data, could also facilitate stealing your Windows sign-in credentials (updated)


Recommended Posts

Forum Moderators
1.1k 500
Zoom's sky-rocketing popularity seems to be a mixed blessing for the company, as yet another privacy issue crept up this week, involving leakage of personal information of thousands of users by exposing their email address and photo to strangers on the platform and potentially enabling the latter to initiate unwanted video calls.

...

Update: In addition to the aforementioned problem, it's been documented (as reported by Bleeping Computer) that because of how Zoom handles URLs in group chats, any URL you send/receive is converted into a hyperlink. However, this could be used maliciously, if instead of sending a web link, you receive a UNC path (Universal Naming Convention), this will also be converted to a link.

 

UNC paths are typically used for networking and file sharing (for example, \\127.0.0.1\C$\windows\system32\calc.exe). An unsuspecting user could click a malicious link, which would make Windows try to connect to a remote host using the Server Message Block (SMB) network file-sharing protocol. By default, Windows will send the user's login name and their NTLM password hash, which can be easily cracked.

 

Source

Owned

 Share

CPU: i7 9570H
GPU: AMD 5300m
RAM: 16GB
SSD/NVME: 512GB
OPERATING SYSTEM: macOS Sonoma
Full Rig Info

Owned

 Share

CPU: 5800X
GPU: RTX 2070
RAM: 32GB
SSD/NVME: 500GB 960 Evo
SSD/NVME 2: 1TB 860 Evo
SSD/NVME 3: 1TB 860 Evo
PSU: EVGA 650w Modular
OPERATING SYSTEM: Windows 11
Full Rig Info
Link to comment
Share on other sites

Content Creator
278 222

That's not good, especially since Governments have been shown to use Zoom.

Owned

 Share

CPU: AMD Ryzen 9 - 7950X3D
MOTHERBOARD: Asus X670E Hero (pls EVGA make an AMD mobo)
RAM: G.Skill 64GB @ 6000Mhz
GPU: RTX 4090 Strix OC
SSD/NVME: 2x SN850X 4TB | 1x 970 Pro 0.5TB
MONITOR: Something OLED, 120hz and 42-48"
WC RADIATOR: MO-RA3 420 | HeatKiller 360S
WC CPU BLOCK: Heatkiller IV Pro
Full Rig Info

Owned

 Share

AUDIO: Topping DX7 Pro
AUDIO 2: Sennheiser HD800S
AUDIO 3: Sennheiser HD650
AUDIO 4: Sennheiser HD 4.50 BTNC
AUDIO 5: Edifier RT1700BT
AUDIO 6: Custom XLR balanced cables
Full Rig Info

CA$40000

Owned

 Share

CPU: F22C | 257hp 251nm
CPU COOLER: K&N FIPK Intake | AEM filter
GPU: Yokohama AD08R 255/40r17
CPU COOLER 2: Titan 7 R-10s 17x9.5+51
AUDIO: Alpine UTE73BT + Modifry DCI
MOTHERBOARD: Öhlins Road & Track DFV Coilovers
OPERATING SYSTEM: Hondata
CASE: Recaro Pole Position
Full Rig Info
Link to comment
Share on other sites

Forum Moderators
1.1k 500

Yeah, they're idiots when it comes to technology. They have repeatedly tried to get bills to pass that force companies to put backdoors in their encryption despite every major tech company saying it's a really dumb idea for many reasons.

  • Thanks 1

Owned

 Share

CPU: i7 9570H
GPU: AMD 5300m
RAM: 16GB
SSD/NVME: 512GB
OPERATING SYSTEM: macOS Sonoma
Full Rig Info

Owned

 Share

CPU: 5800X
GPU: RTX 2070
RAM: 32GB
SSD/NVME: 500GB 960 Evo
SSD/NVME 2: 1TB 860 Evo
SSD/NVME 3: 1TB 860 Evo
PSU: EVGA 650w Modular
OPERATING SYSTEM: Windows 11
Full Rig Info
Link to comment
Share on other sites

Man that is a gaping flaw. Spiking the UNC,oh dear lol

£3000

Owned

 Share

CPU: AMD Ryzen 9 7950X3D
MOTHERBOARD: MSI Meg Ace X670E
RAM: Corsair Dominator Titanium 64GB (6000MT/s)
GPU: EVGA 3090 FTW Ultra Gaming
SSD/NVME: Corsair MP700 Pro Gen 5 2TB
PSU: EVGA Supernova T2 1600Watt
CASE: be quiet Dark Base Pro 900 Rev 2
FANS: Noctua NF-A14 industrialPPC x 6
Full Rig Info

Owned

 Share

CPU: Intel Core i5 8500
RAM: 16GB (2x8GB) Kingston 2666Mhz
SSD/NVME: 256GB Samsung NVMe
NETWORK: HP 561T 10Gbe (Intel X540 T2)
MOTHERBOARD: Proprietry
GPU: Intel UHD Graphics 630
PSU: 90Watt
CASE: HP EliteDesk 800 G4 SFF
Full Rig Info

£3000

Owned

 Share

CPU: 2 x Xeon|E5-2696-V4 (44C/88T)
RAM: 128GB|16 x 8GB - DDR4 2400MHz (2Rx8)
MOTHERBOARD: HP Z840|Intel C612 Chipset
GPU: Nvidia Quadro P2200
HDD: 4x 16TB Toshiba MG08ACA16TE Enterprise
SSD/NVME: Intel 512GB 670p NVMe (Main OS)
SSD/NVME 2: Samsung 1TB 980 NVMe (VM's)
SSD/NVME 3: 2x Seagate FireCuda 1TB SSD's (Apps)
Full Rig Info
Link to comment
Share on other sites

Additionally Zoom is not end to end encrypted, regardless of what their marketing info says. The only encryption that is happening in video calls is the data that is streamed over the line. No different really than any https connection. All of the data on Zoom's severs is available to anyone in Zoom.

 

They did update their privacy policy to specify that malware (ad tracking and selling) is only on their web pages, and they are not mining calls and chats to sell to 3rd parties. https://blogs.harvard.edu/doc/2020/03/27/zoom/

 

E2E encryption is hard for spur of the moment teleconferencing, but the fact that they have tried to redefine what the term means is pretty shady in my opinion.

Link to comment
Share on other sites

The whole operation seems way shady. As far as I am concerned, any Comms app has to have end to end encryption, otherwise no thanks ! Scary thing is businesses use this !

 

It amazes me how businesses especially, do not check into the software they are using.

£3000

Owned

 Share

CPU: AMD Ryzen 9 7950X3D
MOTHERBOARD: MSI Meg Ace X670E
RAM: Corsair Dominator Titanium 64GB (6000MT/s)
GPU: EVGA 3090 FTW Ultra Gaming
SSD/NVME: Corsair MP700 Pro Gen 5 2TB
PSU: EVGA Supernova T2 1600Watt
CASE: be quiet Dark Base Pro 900 Rev 2
FANS: Noctua NF-A14 industrialPPC x 6
Full Rig Info

Owned

 Share

CPU: Intel Core i5 8500
RAM: 16GB (2x8GB) Kingston 2666Mhz
SSD/NVME: 256GB Samsung NVMe
NETWORK: HP 561T 10Gbe (Intel X540 T2)
MOTHERBOARD: Proprietry
GPU: Intel UHD Graphics 630
PSU: 90Watt
CASE: HP EliteDesk 800 G4 SFF
Full Rig Info

£3000

Owned

 Share

CPU: 2 x Xeon|E5-2696-V4 (44C/88T)
RAM: 128GB|16 x 8GB - DDR4 2400MHz (2Rx8)
MOTHERBOARD: HP Z840|Intel C612 Chipset
GPU: Nvidia Quadro P2200
HDD: 4x 16TB Toshiba MG08ACA16TE Enterprise
SSD/NVME: Intel 512GB 670p NVMe (Main OS)
SSD/NVME 2: Samsung 1TB 980 NVMe (VM's)
SSD/NVME 3: 2x Seagate FireCuda 1TB SSD's (Apps)
Full Rig Info
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...

Important Information

This Website may place and access certain Cookies on your computer. ExtremeHW uses Cookies to improve your experience of using the Website and to improve our range of products and services. ExtremeHW has carefully chosen these Cookies and has taken steps to ensure that your privacy is protected and respected at all times. All Cookies used by this Website are used in accordance with current UK and EU Cookie Law. For more information please see our Privacy Policy