A vulnerability has been publicly disclosed in the Mac version (<= 4.4.1) of Zoom that allows any website to forcibly join a user to a Zoom call, with their video camera activated, without the user’s permission.
If you have the Zoom conferencing client software installed on a Mac, please be sure to update it to the latest version, or uninstall it completely.
See also the campus security announcement and recommendations here: