Critical desktop hijack vulnerability detected in Slack; now fixed
Shortpedia
Content TeamImage Credit: shortpedia
Slack, one of the biggest players in the remote collaboration space, has fixed a major flaw in its service. The issue affected its desktop app and could have left many companies and their employees compromised - if it were not for the security researcher who discovered the bug in the first place, and Slack's subsequent (but stingy) action. Vegeris reported the RCE vulnerability on January 27, and Slack issued a patch plugging it by February 20.