Security researcher Katie Moussouris discovered a bug that could have allowed an attacker to eavesdrop in a Clubhouse room undetected or verbally disrupt a discussion beyond a moderator’s control. The vulnerability could also be exploited with virtually no technical knowledge. To launch the attack, you would first log into your Clubhouse account on Phone A, and then join or start a room. You’d still have a live connection to the room you were in. Once you “left” that same room on Phone B, you could disappear, but could maintain your ghost connection. Clubhouse has now fixed two bugs related to the finding.
Please follow and like us: