Yet another reason not to use #Zoom's proprietary video conferencing service. They care more about their public image than their users' security, and lie about trying to silence security researchers doing responsible disclosure with hush money:

There are a number of hosted or self-hostable alternatives, including #JitsiMeet, as well as #P2P conferencing apps like #Jami, and protocols like #Tox.


@strypey isn't it normal for security researchers to basically go "give me 50$ or i'll tell everyone there's a bug"

@icedquinn no. The article talks about how responsible disclosure and bug bounties are supposed to work. TL;DR public disclosure, with a delay to allow fixes to be applied, is the norm.

Sign in to participate in the conversation

Welcome to your niu world ! We are a cute and loving international community O(≧▽≦)O !