Security Now (MP3)

Security Now (MP3) Podcast

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in security today with Leo Laporte. Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

SN 714: Android 'Q'
This Week's Stories• Update WhatsApp NOW!• Security News from Google I/O 2019 conference• A new exploitable flaw in all Linux kernels earlier than v5.0.8• A new set of flaws affecting all Intel processors known as "ZombieLoad"• Security enhancements in Android Q.We invite you to read our show notes at https://www.grc.com/sn/SN-714-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GR...

Security SecurityNow TWiT stevegibson LeoLaporte whatsapp Zombieload GoogleI/O linux androidq

SN 713: Post-Coinhive Cryptojacking
This Week's StoriesThe continuing and changing world of cryptojacking after Coinhive closed their doors last month.Google's announcement of self-expiring data retentionThe mess arising from Mozilla's intermediate certificate expirationAnother wrinkle in the exploit marketplaceMozilla's announcement about deliberate code obfuscationA hacker who hacked at least 29 other botnet hackersA warning about a very popular D-Link netcamWho's paying and who's receiving bug bounties by countryAnother User-Agent gotcha w...

Security SecurityNow TWiT stevegibson LeoLaporte coinhive cryptojacking Google GoogleMaps locationtracking privacy

SN 712: Credential Stuffing Attacks
The large and emerging threat of website credential stuffing attacks.Privacy fallout from our recent coverage of Facebook and GoogleThe uptake rate of recent Windows 10 feature releasesThe source of the A/V troubles with the April patch Tuesday updatesThe NIST's formal fuzzing developmentA massive and ongoing database data leak involving more than half of all American householdsWindows Insiders are already finding that their systems won't update to the May 2019 feature update.United Airlines passengers have...

Security SecurityNow TWiT stevegibson LeoLaporte credentialstuffing facebook Google windows10 PartchTuesday NIST fuzzing WindowsInsiders unitedairlines


SN 711: DNSpionage
Top Security Stories this Week:Google uses its "sensorvault" to help catch the bad guys.Time to update Drupal again.Facebook steals users' email contact lists, logs plaintext Instagram passwordsRussia moves closer to adopting "Internet Master Cutoff Switch" legislation.A reminder that "USB Killers" are a real thing.Marcus Hutchins' plea dealA new(ish) actively exploited Windows 0-dayA bunch of Microsoft Edge newsWindows 7 end-of-life noticesSomething from the "I did say this was bound to happen" departmentD...

Security SecurityNow TWiT stevegibson LeoLaporte Google SensorVault Drupal facebook russia USBKiller MarcusHutchins Windows 0-day Microsoft edge windows7 cisco Talos dns espionage

SN 710: DragonBlood
DragonBlood: the first effective attack on the new WPA3 protocolMalicious use of the URL tracking "ping" attributeThe WinRAR NightmareMore 3rd-party A/V troubles with MicrosoftWhat good did April's patch Tuesday accomplish?Adobe 's big patch TuesdayGoogle considering automatically blocking "high risk" downloadsRussia's Roskomnadzor finally lowers the boom on FacebookThe incredible Taj Mahal APT framework Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/secu...

Security SecurityNow TWiT stevegibson LeoLaporte DragonBlood WinRAR DDoS Ping patchtuesday Microsoft adobe Google russia facebook Rozkomnadzor TajMahal

SN 709: URL "Ping" Tracking
This Week's StoriesYet another capitulation in the (virtually lost) battle against tracking our behavior on the Internet with URL "ping" tracking.UK government's plan to legislate, police and enforce online social media contentMicrosoft's Chromium-based Edge browser's securityImprovements to Windows 10's update managementNews from the "spoofing biometrics" departmentThe worrisome state of Android mobile financial appsNSA's GHIDRA software reverse engineering tool suitePerhaps the dumbest thing Facebook has ...

Security SecurityNow TWiT stevegibson LeoLaporte JasonHowell pingtracking edge Chromium Microsoft windows10 biometrics spoofing Android NSA GHIDRA facebook Win101809


SN 708: Android Security
Android Security, 10 Years LaterWinRAR, a 20+ Year Old Tool With 500M Users, Acknowledged VulnerabilityRussian GPS Hacking and What It Means For UsAndroid's April Fools Day PatchesTesla Autopilot SpoofingThe ASUS "ShadowHammer" AttackWindows 10 (last) October 2018 UpdateA VMware UpdateWe invite you to read our show notes at https://www.grc.com/sn/SN-708-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to S...

Security SecurityNow TWiT stevegibson LeoLaporte Android WinRAR gps hacking vulnerability AprilFools patches TeslaAutopilot tesla spoofing asus Shadowhammer windows10 update VMWare

SN 707: Tesla, Pwned
Results of the much anticipated Mid-March Vancouver Pwn2Own competitionThe return of "Clippy", Microsoft's much-loathed dancing paperclipOperation "ShadowHammer" which reports say compromised ASUS (... but did it?)The ransomware attack on Norsk Hydro aluminumThe surprise renaming of Windows DefenderA severe bug revealed in the most popular PDF generating PHP libraryAn early look at Microsoft's forthcoming Chromium-based web browserHope for preventing caller ID spoofingA needed update for users of PuTTYMozil...

Security SecurityNow TWiT stevegibson LeoLaporte PWN2Own clippy Microsoft Shadowhammer asus NorskHydro ransomware WindowsDefender PDF Chromium edge CallerIDSpoofing PuTTY mozilla azure windows7

SN 706: Open Source eVoting
Last week's Patch Tuesday March MadnessWin7 SHA256 Windows Update... UpdateMany attacks leveraging the recently discovered WinRAR vulnerabilityWhat happens when Apple, Google, and GoDaddy all drop a bit?A big recent jump in Mirai Botnet CapabilityCompromised Counter-Strike gaming serversPrivacy enhancements coming in Android QA pair of very odd web browser extensions for Chrome and Firefox from MicrosoftA VERY exciting and encouraging project to create an entirely open eVoting system Hosts: Leo Laporte an...

Security SecurityNow TWiT stevegibson LeoLaporte spectre adobe ColdFusion docker coinhive Wireshark thunderbolt


SN 705: SPOILER
0-day exploit bidding warNSA releases Ghidra v9Firefox adds Tor privacyA pair of nasty 0-daysA worrisome breach at CitrixThe risk of claiming to be an unhackable aftermarket car alarmA new and interesting "Windows developers chatting with users" idea at MicrosoftA semi-solution to Windows updates crashing systemsDetailed news of the Marriott/Starwood breach, a bit of miscellany fromSPOILER: Another new and different consequence of speculation on Intel machines.We invite you to read our show notes at https:/...

SecurityNow TWiT stevegibson LeoLaporte WorldWideWeb TimBerners-Lee 0-day Zerodium HackerOne NSA GHIDRA firefox tor citrix Microsoft Windows update Marriott Starwood Spoiler Speculation spectre rowhammer intel

SN 704: Careers in Bug Hunting
The increasing feasibility of making a sustainable career out of hunting for software bugsA newly available improvement in Spectre mitigation performance and who can try it nowAdobe's ColdFusion emergency and patch,More problems with A/V and self-signed certsA Docker vulnerability being exploited in the wildThe end of CoinhiveA new major Wireshark releaseA nifty web browser website screenshot hackContinuing troubles with the over-privileged Thunderbolt interfaceBot-based credential stuffing attacksWe invite...

Security SecurityNow TWiT stevegibson LeoLaporte spectre adobe ColdFusion docker coinhive Wireshark thunderbolt

SN 703: Out in the Wild
A number of ongoing out-in-the-wild attacks Another early-warned Drupal vulnerability A 19-year old flaw in an obscure decompress for the "ACE" archive formatMicrosoft reveals an abuse of HTTP/2 protocol which is DoSing its IIS servers.Mozilla faces a dilemma about a wanna-be Certificate Authority and they also send a worried letter to Australia. Microsoft's Edge browser is revealed to be secretly whitelisting 58 web domains which are allowed to bypass its "Click-To-Run" permission for Flash.ICANN renews it...

SecurityNow TWiT stevegibson LeoLaporte Drupal ACEMicrosoft mozilla edge flash ICANN nvidia Apple


SN 702: Authenticity on the Internet
Last week's doozy of a patch Tuesday for both Microsoft and AdobeAn interesting twist coming to Windows 7 and Server 2008 security updates Eight mining apps pulled from the Windows StoreAnother positive security initiative from GoogleElectric scooters being hackedChipping away at Tor's privacy guaranteesA year and a half after Equifax, and where's the data?The beginnings of GDPR-like legislation for USAn extremely concerning new and emerging threat for the InternetWe invite you to read our show notes. Hos...

SecurityNow TWiT stevegibson LeoLaporte patchtuesday Microsoft windows7 Server2008 adobe windowsstore Xiaomiscooters tor Equifax GDPR elonmusk ai openAI

SN 701: Adiantum
Apple's most recent v12.1.4 iOS update and the two 0-day vulnerabilities it closedWorrisome new Android image-display vulnerabilityAn interesting "reverse RDP" attackThe new LibreOffice & OpenOffice vulnerabilityMicrosoft's research into the primary source of software vulnerabilitiesMaryJo gets an early peek at enterprise pricing for extending Windows 7 supportChina and Russia continue their work to take control of their countries' InternetFirefox's resumption of its A/V warning in release 65.How Google doe...

Security SecurityNow TWiT stevegibson LeoLaporte Apple iOS12 zero-day Android reverseRDP libreoffice OpenOffice Microsoft windows7 Chana russia firefox Google Adiantum

SN 700: 700 and Counting!
Chrome gets "spell-check for URLs"Catch up on your Linux patch up!Performance enhancements for Chrome and FireFox.Facebook must really like being in the doghouse. The Japanese government takes on IoT security. Ubiquiti routers are in trouble again.Chrome "Never Slow" mode in the works.We invite you to read our show notes. Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. F...

Security SecurityNow TWiT stevegibson LeoLaporte chrome linux firefox facebook japan iot Ubiquity vpn neverslowmode


SN 699: Browser Extension Security
The expressive power of the social media friends we keepThe persistent DNS hijacking campaign which has the US Government quite concernedLast week's iOS and macOS updates (and doubtless another one very soon!)A valiant effort to take down malware distribution domainsChrome catching up to IE and Firefox with drive-by file downloadsTwo particularly worrisome vulnerabilities in two Cisco router models publicly disclosed last FridayThe state of the industry and the consequences of extensions to our web browsers...

Security TWiT stevegibson browsers LeoLaporte dns iOS macos facetime facetimebug bugs hacks chrome IE internetexplorer firefox malware cisco routers

SN 698: Which Mobile VPN Client?
Which is the right VPN client for Android, and which should you avoid at all costs?A very worrisome WiFi bug affecting billions of devicesHack a Tesla Model 3 at Pwn2OwnRussia's ongoing, failing and flailing efforts to control the InternetThe return of the Anubis Android banking malwareGoogle's changing policy for phone and SMS App accessTim Cook's note in TIME MagazineNews of a nice Facebook Ad auditing pageAnother Cisco default password nightmare in widely used lower-end devicesWe invite you to read our s...

Security SecurityNow TWiT stevegibson LeoLaporte vpn Android wifi PWN2Own teslamodel3 russia facebook Twitter Anubis androidbankingmalware Google SMS timcook Apple privacy cisco

SN 697: Zerodium
The implications of the recent increase in bounty for the purchase of 0-day vulnerabilities. The intended and unintended consequences of last week's Windows Patch Tuesday.Speaking of unintended consequences, the US Government shutdown has had some, too!A significant privacy failure in WhatsApp. Another Ransomware decryptor (with a twist).Movement on the DNS-over-TLS front.An expectation of the cyberthreat landscape for 2019. A cloudy forecast for The Weather Channel App. A successful 51% attack against the ...

Security SecurityNow TWiT stevegibson LeoLaporte WeatherChannel location Zerodium zero-day Windows patchtuesday governmentshutdown whatsapp ransomeware dls-over-tls Google ethereumclassic 51%attack iPhone FaceID TouchID flash


SN 696: Here Comes 2019!
The NSA announces the forthcoming release of an internal powerful reverse-engineering tool for examining and understanding other people's code.Emergency out-of-cycle patches from both Adobe and Microsoft.PewDiePie hacker strikes again.Prolific 0-day dropper SandboxEscaper ruffles some feathers.A new effort by the US government to educate industry about the risks of Cyber attacks.Welcome news on the ransomware front.VERY welcome news of a new Windows 10 feature.A note about a just-published side-channel atta...

Security SecurityNow TWiT stevegibson LeoLaporte NSA GHIDRA adobe Microsoft PewDiePie SandboxEscaper NCSC Apple iPhone CES WindowsSandbox ransomware BleepingComputer

SN 695: Our Best of 2018
The Best of Security Now from 2018! Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsor: securitynow.cachefly.com...

Security GRC stevegibson privacy meltdown spectre leolaporte Bestof2018

SN 694: The SQLite RCE Flaw
Rhode Island's response to Google's recent API flawSignal's response to Australia's anti-encryption legislationThe return of PewDiePieUS border agents retaining traveler's private dataThis Week in Android HijinksConfusion surrounding the Windows v5 releaseAnother Facebook API mistakeThe 8th annual most common passwords list (AKA "How's 'monkey' doing?")Why all might not be lost if someone is hit with drive encrypting malwareMicrosoft's recent 4-month run of 0-day vulnerability patchesThe Firefox 64 updateA ...

Security SecurityNow TWiT stevegibson leolaporte RhodeIsland.Google google+ SignalAustralia encryption PewDiePie Border Windowsv5 Android facebook Microsoft firefox SQLite


SN 693: Internal Bug Discovery
Australia's recently passed anti-encryption legislationDetails of a couple more mega-breaches including a bit of Marriott follow-upA welcome call for legislation from MicrosoftA new twist on online advertising click fraudThe DHS is interested in deanonymizing cryptocurrencies beyond BitcoinThe changing landscape of TOR fundingAn entirely foreseeable disaster with a new Internet IoT-oriented protocolGoogle finds bugs in Google+ and acts responsibly -- again -- what that suggests for everyone elseWe invite yo...

Security SecurityNow TWiT stevegibson leolaporte Australia encryption Marriott breach Microsoft DHS tor iot google+

SN 692: GPU RAM Image Leakage
Another Lenovo SuperFish-style local security certificate screw upThe Marriott breach and several other new, large and high-profile secure breach incidentsThe inevitable evolution of exploitation of publicly exposed UPnP router servicesThe emergence of "Printer Spam"How well does ransomware pay? We have an idea now.The story of two iOS scam appsProgress on the DNS over HTTPS frontRumors that Microsoft is abandoning their EdgeHTML engine in favor of Chromium We also have a bit ofA Cyber Security related Humb...

Security SecurityNow TWiT stevegibson leolaporte JasonHowell Marriott Starwood breach lenovo Superfish sennheiser UPnP quora PrinterSpam ransomware iOS scam PewDiePie DNSoverHTTPS Microsoft edge Chromium HumbleBookBundle

SN 691: ECCploit
Yesterday, the US Supreme Court heard Apple's argument about why a class action lawsuit against their monopoly App Store should not be allowed to proceed. How could this affect iOS security?Google and Mozilla are looking to remove support for FTP from their browsers.From our "what could possibly go wrong" department, we have browsers asking for explicit permission to leave their sandboxes.The next step in the evolution of RowHammer attacks which do, as Bruce Schneier once opined, only get better... or in th...

Security SecurityNow TWiT stevegibson leolaporte SCOTUS Apple appstore iPhone Google mozilla firefox FTP browsers webapps rowhammer


SN 690: Are Passwords Immortal?
All the action at last week's Pwn2Own Mobile hacking contestThe final word on processor mis-design in the Meltdown/Spectre eraA workable solution for unsupported Intel firmware upgrades for hostile environmentsA forthcoming Firefox breach alert featureThe expected takeover of exposed Docker-offering servershe recently announced successor to recently ratified HTTP/21.1.1.1 errataThe future of passwords: a thoughtful article written by Troy Hunt, the creator of the popular "Have I Been Pwned" web serviceWe in...

Security SecurityNow TWiT stevegibson leolaporte PWN2Own meltdown spectre intel firefox docker http/2 1.1.1.1 passwords HaveIBeenPwned TroyHunt

SN 689: Self-Decrypting Drives
Last month's Patch Tuesday, this monthA GDPR-inspired lawsuit filed by Privacy InternationalCheck these two router ports to protect against a new botnet that's making the roundsAnother irresponsibly disclosed zero-day, this time in Virtual BoxCloudFlare's release of a very cool 1.1.1.1 app for iOS and AndroidMicrosoft's caution about the in-RAM vulnerabilities of the BitLocker whole drive encryptionA deep dive into last week's worrisome revelation about the lack of true security being offered by today's Sel...

Security SecurityNow TWiT stevegibson leolaporte patchtuesday privacy GDPR botnet zero-day VirtualBox cloudflare 1.1.1.1 iOS Android Microsoft bitlocker self-encrypting ssd BCMPUPnP_Hunterbotnet

SN 688: PortSmash
A close look at the impact and implication of the new "PortSmash" attack against Intel (and almost certainly other) processors. The new "BleedingBit" Bluetooth flaws JavaScript is no longer optional with Google A new Microsoft Edge browser 0-dayWindows Defender plays in its own sandboxMicrosoft and SysInternals newsThe further evolution of the CAPTCHA The 30th anniversary of the Internet's first worm A bizarre requirement of Ransomware A nice new bit of security non-tech from AppleWe invite you to read our ...

SecurityNow TWiT stevegibson leolaporte Portsmash BleedingBit bluetooth javascript Google Microsoft edge WindowsDefender Sysinternals captcha ransomware Apple MorrisWorm


SN 687: Securing the Vending Machine
More Zero-day exploits in Windows 10, publicly exposed Docker Engine APIs, Google's plan to fix Android, the DoD is expanding its existing "Hack the Pentagon" bug-bounty program to include hardware assets, the going rate for DDoS-for-Hire, and Steve has the answer to our vending machine conundrum from last week. We invite you to read our show notes. Hosts: Leo Laporte and Steve Gibson Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now!...

Security Microsoft windows10 zero-dayexploits exploits docker Google Android hadoop DemonBot apache Dod hack hacking DDoS firefox linux FreeBSD vulnerability

SN 686: Libssh's Big Whoopsie!
This week a widely used embedded OS (FreeRTOS) is in the doghouse, as are at least eight D-Link routers which have serious problems most of which D-Link has stated will never be patched. We look at five new problems in Drupal 7 and 8, two of which are rated critical, trouble with Live Networks RTSP streaming server, still more trouble with the now-infamous Windows 10 Build 1809 feature update, and a long standing 0-day in the widely used and most popular plugin for jQuery. We then look at what can only be d...

Security SecurityNow TWiT leolaporte stevegibson FreeRTOS D-link Drupal windows10 LiveNetworks RTSP jQuery libssh puzzler

SN 685: Good Samaritans?
This week we observe the untimely death of Microsoft's co-founder Paul Allen, revisit the controversial Bloomberg China supply chain hacking report, catch up on Microsoft's October patching fiasco, follow-up on Facebook's privacy breach, look at the end of TLS v1.0 and 1.1, explore Google's addition of control flow integrity to Android 9, look at a GAO report about the state of US DOD weapons cybersecurity, consider the EOL of PHP 5.x chain, take a quick look at an A/V comparison test, entertain a few bits ...

Security Microsoft cybersecurity PHP patching TLS PaulAllen Coca-cola Google Android9 facebook Bloomberg chinahack


SN 684: The Supply Chain
An October Surprise of a different sort - Windows 10 update deletes users' filesA security researcher has massively weaponzied the existing MicroTik vulnerability and released it as a proof-of-conceptA clever voicemail WhatsApp OTP bypassWhat happened with that recent Google+ breach?Google tightens up its Chrome extensions security policiesWiFi radio protocol designations finally switch to simple version numberingIntel unwraps its 9th-generation processorsHead-spinning PDF updates from Adobe and Foxit (this...

Security SecurityNow TWiT leolaporte stevegibson Google google+ API Windows windows10 MicroTik whatsapp chrome Wi-Fi intel PDF adobe Foxit China Apple amazon DHS supermicro Elemental Bloomberg supplychain

SN 683: The Facebook Breach
This week we discuss yet another treat from Cloudflare, the growing legislative battle over Net Neutrality, the rise of Python malware, Cisco's update report on the VPNFilter malware, still more Chrome controversy and some placating, the rapid exploitation of 0-day vulnerabilities, the first UEFI rootkit found in the wild, another new Botnet discovery, the danger of the RDP protocol, a nasty website browser trick and how to thwart it, a quick update on recent non-fiction and science fiction, and then a look...

SecurityNow TWiT leolaporte stevegibson chrome Google www Chromium 0-day exploit Microsoft SabriHaddouche firefox BrowserReaper matthewgreen Chrome69 UnGoogled westerndigital MiraiBotnet FBI Equifax cloudflare

SN 682: SNI Encryption
This week we look at additional changes coming from Google's Chromium team, another powerful instance of newer cross-platform malware, the publication of a 0-day exploit after Microsoft missed its deadline, the return of Sabri Haddouche with browser crash attacks, the reasoning behind Matthew Green's decision to abandon Chrome after a change in release 69... and an "UnGoogled" Chromium alternative that Matthew might approve of, Western Digital's pathetic response to a very serious vulnerability, a cool devi...

Security SecurityNow TWiT leolaporte stevegibson chrome Google www Chromium 0-day exploit Microsoft SabriHaddouche firefox BrowserReaper matthewgreen Chrome69 UnGoogled westerndigital MiraiBotnet FBI Equifax cloudflare


SN 681: The Browser Extension Ecosystem
This week we prepare for the first ever Presidential Alert unblockable nationwide text message, we examine Chrome's temporary "www" removal reversal, checkout Comodo's somewhat unsavory marketing, discuss a forthcoming solution to BGP hijacking, examine California's forthcoming IoT legislation, deal with the return of Cold Boot attacks, choose not to click on a link that promptly crashes any Safari OS, congratulate Twitter on adding some auditing, check in on the Mirai Botnet's steady evolution, look at the...

Security SecurityNow TWiT leolaporte stevegibson JasonHowell EmergencyPresidentialAlert chrome Comodo BGPhijacking iot california ColdBoot SafariRipper safari iOS12 macos

SN 677: The Foreshadow Flaw
As we head into our 14th year of Security Now​, this week we look at some of the research released during last week's USENIX Security symposium, we also take a peek at last week's Patch Tuesday details, Skype's newly released implementation of Open Whisper Systems' Signal privacy protocol, Google's Chrome browser's increasing pushback against being injected into, news following last week's observation about Google's user tracking, Microsoft's announcement of more spoofed domain takedowns, another page table...

Security SecurityNow TWiT leolaporte stevegibson usenix patchtuesday skype OpenWhisperSystems Google chrome Microsoft russia MaliciousRegularExpressions coinhive intel spectre

SN 676: The Mega FaxSploit
This week we cover lots of discoveries revealed during last week's Black Hat 2018 and DEF CON 26 Las Vegas security conferences. Among them, 47 vulnerabilities across 25 Android smartphones, Android "Disk-In-The-Middle" attacks, Google tracking when asked not to, more Brazilian DLink router hijack hijinks, a backdoor found in VIA C3 processors, a trusted-client attack on WhatsApp, a macOS 0-day, a tasty new feature for Win10 Enterprise, a new Signal-based secure eMail service, Facebook's FIZZ TLS v1.3 libra...

SecurityNow TWiT leolaporte stevegibson blackhat defcon Android Google DLink VIAC3 whatsapp macos Win10 signal facebook let'sencrypt FaxSploit


SN 675: New WiFi Password Attack
This week we discuss yet another new and diabolical router hack and attack, Reddit's discovery of SMS 2FA failure, WannaCry refuses to die, law enforcement's ample unused forensic resources, a new and very clever BGP-based attack, Windows 10 update dissatisfaction, Google advances their state-sponsored attack notifications, what is Google's project Dragonfly?, a highly effective and highly targeted Ransomware campaign, some closing-the-loop feedback from our listeners, and a breakthrough in hacking/attackin...

SecurityNow TWiT leolaporte stevegibson router coinhive reddit SMS2FA yubikey WannaCry bgp windows10 Google Dragonfly wifi

SN 674: Attacking Bluetooth Pairing
This week we examine still another new Spectre processor speculation attack, we look at the new "Death Botnet", the security of the US DoD websites, lots of Google Chrome news, a push by the US Senate toward more security, the emergence and threat of clone websites in other TLDs, more cryptocurrency mining bans, Google's Titan hardware security dongles, and we finish by examining the recently discovered flaw in the Bluetooth protocol which has device manufacturers and OS makers scrambling. (But do they real...

SecurityNow TWiT stevegibson JasonHowell spectre Dod HTTPS DeathBotnet RonWyden senate TLDs GoogleTitan yubikey cryptocurrency googleplay bluetooth

SN 673: The Data Transfer Project
This week as we examine still another new Spectre processor speculation attack, some news on DRAM hammering attacks and mitigation, the consequences of freely available malware source code, the reemergence of concern over DNS rebinding attacks, Venmo's very public transaction log, more Russian shenanigans, the emergence of flash botnets, Apple continuing move of Chinese data to China, another (the 5th) Cisco secret backdoor found, an optional missing Windows patch from last week, a bit of Firefox news and p...

Security SecurityNow TWiT leolaporte stevegibson spectre dram rowhammer DNSrebinding venmo Russian flashbotnets Apple China cisco Windows firefox Google Microsoft facebook Twitter DataTransferProject


SN 672: All Up in Their Business
This week we look at even MORE, new, Spectre-related attacks, highlights from last Tuesday's monthly patch event, advances in GPS spoofing technology, GitHub's welcome help with security dependencies, Chrome's new (or forthcoming) "Site Isolation" feature, when hackers DO look behind the routers they commandeer, the consequences of deliberate BGP routing misbehavior... and reading between the lines of last Friday's DOJ indictment of the US 2016 election hacking by 12 Russian operatives -- the US appears to ...

SecurityNow TWiT leolaporte stevegibson spectre patchtuesday gps github chrome SiteIsolation router bgp DOJ russia hacking election indictment

SN 671: STARTTLS Everywhere
This week we discuss another worrisome trend in malware, another fitness tracking mapping incident and mistake, something to warn our friends and family to ignore, the value of periodically auditing previously-granted web app permissions, when malware gets picky about the machines it infects, another kinda-well-meaning Coinhive service gets abused, what are the implications of D-Link losing control of its code signing cert?, some good news about Android apps, iOS v11.4.1 introduces "USB Restricted Mode"... ...

Security SecurityNow TWiT leolaporte stevegibson fortnite rainway malware polar nas FBI fitnesstracking coinhive usbrestrictedmode Grayshift iOS11.4.1 northkorea EFF STARTTLS

SN 670: Wi-Fi Protected Access v3
This week we discuss the interesting case of a VirusTotal upload... or was it?, newly discovered problems with our 4G LTE... and even what follows, another new EFF encryption initiative, troubles with Spectre and Meltdown in some browsers, the evolution of UPnP-enabled attacks, an unpatched Wordpress vulnerability that doesn't appear to be worrying the Wordpress devs... and an early look at next year's forthcoming WPA3 standard... which appears to fix everything! We invite you to read our show notes. Ho...


SN 669: Cellular Location Privacy
This week we examine some new side-channel worries and vulnerabilities, did Mandiant "hack back" on China?, more trouble with browsers, the big Google Firebase mess, sharing a bit of my dead system resurrection, and a look at the recent Supreme Court decision addressing cellular location privacy. We invite you to read our show notes. Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feed...

SN 668: Lazy FPU State Restore
This week we examine a rather "mega" patch Tuesday, a nifty hack of Win10's Cortana, Microsoft's official "when do we patch" guidelines, the continuing tweaking of web browser behavior for our sanity, a widespread Windows 10 rootkit, the resurgence of the Satori IoT botnet, clipboard monitoring malware, a forthcoming change in Chrome's extensions policy, hacking apparent download counts on the Android store, some miscellany, an update on the status of Spectre & Meltdown... and yes, yet another brand new...