Security researcher Jonathan Leitschuh publicly disclosed a zero-day vulnerability in conferencing software Zoom. The vulnerability affects Zoom’s click-to-join feature, which allows users to go directly to a video meeting from a browser link. Zoom could be hijacked by any website to force a Mac user to join a call without their permission, and with webcams activated unless a specific setting was enabled. Even if users uninstall Zoom, the insecure local web server persists and will happily re-install the Zoom client for you, without requiring any user interaction on your behalf besides visiting a webpage”]
Source: https://gizmodo.com/serious-security-flaw-with-teleconferencing-app-allowed-1836202438