Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Critical Security Flaw in Jitsi's Public Instance: Unauthorized Mic and Camera Access

2025-07-24
Critical Security Flaw in Jitsi's Public Instance: Unauthorized Mic and Camera Access

A critical security vulnerability has been discovered in Jitsi's public instance, an open-source video conferencing application. Attackers can silently initiate a Jitsi meeting in the background by tricking users into visiting a malicious link, gaining unauthorized access to their microphones and cameras. Jitsi claims this is a 'feature' and refuses to fix it. The vulnerability exploits previously granted permissions, allowing attackers to capture audio and video even without the user's knowledge or interaction. The author urges Jitsi to at least remove this 'feature' from the public instance to mitigate the significant security risk.

(zimzi.substack.com)
Tech
Witness the Seven Sisters Eclipse in July 2025
HyperPB: A Blazing-Fast Go Protobuf Parser Outperforming UPB