Zoom users claim macOS app keeps 'listening' after meetings end

A hand in shadow holding a phone with the Zoom app
(Image credit: Shutterstock)

Video conferencing and collaboration platform Zoom has released an update to its macOS client addressing a security issue whereby a Mac's microphone remained enabled even after a meeting had ended.

Zoom users running the latest version of macOS Monterey had been concerned about the apparent privacy issues since December 2021, according to posts made on the official Zoom community support forums, first reported by The Register.

The issue in question involved the orange dot in the Mac's Control Centre appearing, indicating that the device's microphone was being used in an application. That app was revealed to be Zoom, which was open in the taskbar but not actively in a meeting.

Numerous replies to the original post echoed concerns regarding where the audio data was being sent, and that it wasn't a single use case.

"The Zoom client for macOS 5.9.3, released on January 25, 2022, fixed a bug involving the failure to properly terminate the microphone use post-meeting," a Zoo spokesperson told IT Pro.

"Zoom has determined that this bug did not result in audio data being transmitted back to Zoom's platform," they added. "As always, we recommend users make sure their Zoom client is updated to the latest version."

The release notes accompanying version 5.9.3 made no explicit mention of the macOS bug, but earlier release notes for version 5.9.1 issued on 20 December 2021 indicated the big had been fixed, though no explanation was provided as to why the bug presented itself, or what was done with recordings.


Hybrid cloud for video surveillance

What it is and why you'll want one


Numerous users also reported the bug persisting even after updating to version 5.9.1 and complaints persisted well into January 2022, long after even the 5.9.3 patch was released.

At the time, users commenting on the community support thread voiced their concerns around privacy, re-iterating their experience with Zoom's privacy issues in years gone by. One user said: "This is [a] major privacy breach and I am considering dropping Zoom and asking my IT department to replace Zoom with a more secure option".

In 2019, Zoom was criticised for installing a local web server on Mac users' machines that allowed websites to automatically launch users into meetings and enable their webcams.

The incident prompted Apple to roll out a silent update removing the web server from all Mac machines which followed Zoom's own update achieving the same purpose. Apple said at the time that no user intervention was required to enable the update but IT Pro's testing, at the time, showed the issue persisted until the user rebooted their machine.

The company also settled a case with the Federal Trade Commission (FTC) in 2020 after the claims it made about the use of end-to-end encryption (E2EE) on its platform, which was used by governments and local authorities during the pandemic, turned out to be false.

Connor Jones

Connor Jones has been at the forefront of global cyber security news coverage for the past few years, breaking developments on major stories such as LockBit’s ransomware attack on Royal Mail International, and many others. He has also made sporadic appearances on the ITPro Podcast discussing topics from home desk setups all the way to hacking systems using prosthetic limbs. He has a master’s degree in Magazine Journalism from the University of Sheffield, and has previously written for the likes of Red Bull Esports and UNILAD tech during his career that started in 2015.