"We addressed the issue identified by the Sakura Samurai researchers on our Keybase platform in version 5.6.0 for Windows and macOS and version 5.6.1 for Linux. In a statement, a Zoom spokesman said that the company appreciates the work of the researchers and takes privacy and security "very seriously." Once done, you will get to see your account’s dashboard with a button saying ‘Action Required’ on the left.
You’ll need to input your email address, and then come up with a username and password. Zoom said it has fixed the flaw in the latest versions of its software for Windows, macOS and Linux. A serious flaw in Zoom ’s Keybase secure chat application left copies of images contained in secure communications on Keybase users’ computers after they were supposedly deleted. This is done on the official Keybase website, by going to Login > Join Keybase. It allows safe storage of your documents like photos, videos, and other important files. The flaw was discovered by researchers from the group Sakura Samurai as part of a bug bounty program offered by Zoom, which acquired Keybase in May, 2020. Keybase is a secure messaging and file-sharing app. However, it could put their security, privacy and safety at risk, especially for users living under authoritarian regimes in which apps like Keybase and Signal are increasingly relied on as a way to conduct conversations out of earshot of law enforcement or security services. The flaw in the encrypted messaging application ( CVE-2021-23827) does not expose Keybase users to remote compromise.
Deleted keybase app kept chat images update#
The bug was fixed last month, so users are recommended to update immediately. The app was deleting the files from the chat but kept them locally stored in unencrypted form. A serious flaw in Zoom's Keybase secure chat application left copies of images contained in secure communications on Keybase users' computers after they were supposedly deleted. FebruKeybase was vulnerable to a local attack that could expose supposedly deleted images.
0 kommentar(er)
