The developer has already released a patch to fix the problem. However, the security expert believes that
The vulnerability was reported by Patrick WardleWardle) at the Def Con hacker conference in Las Vegas. He said that when installing or uninstalling Zoom on computers with macOS, the program asks for special permissions from the user. The first time you run the installer, you must enter the device password, but then the automatic update function constantly runs in the background with superuser rights.
With each update, the program installsnew package by verifying its Zoom cryptographic signature. However, the hackers could have slipped the updater any file with the same name as the Zoom signing certificate. But before that, the attacker had to gain access to the target system, and after that, use the vulnerability to gain higher levels of access.
Wardle said he notified Zoom aboutvulnerabilities in December 2021. However, the update that was supposed to fix this contained a bug that still allowed hackers to gain access to macOS users' devices. Wardle said he told Zoom how to fix the problem, but it still hasn't been done. Zoom itself told The Verge that they are aware of the vulnerability and are "working hard to fix it."