Episodes

Reviews

Analytics

Clips

July 17, 2019
SN 723: Encrypting DNS
Bullet points from last Tuesday's monthly Windows patches as wellNotes from the end of Windows 7Laporte County Under Ransomware AttackThe mixed blessing of fining companies for self-reportingA survey of enterprise malware headachesSome Mozilla/ Firefox newsAnother (kinda obvious) way of exfiltrating information from a PCDNS EncryptionWe invite you to read our show notes at https://www.grc.com/sn/SN-723-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: netscout.com go.itpro.tv/securitynow promo code SN30 thehelm.com/SECURITYNOW
More info...
131 min
July 10, 2019
SN 722: Gem Hack & Ghost Protocol
This Week's StoriesMozilla's privacy-enhancing DNS over HTTPS supportFacial recognition and automobile license plate scannersThe future of satellite-based Internet servicesHow a Ruby code repository was hackedThe UK GCHQ's proposal for adding "ghost" participants into private conversationsWe invite you to read our show notes at https://www.grc.com/sn/SN-722-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: redhat.com/heroes canary.tools/twit - use code: TWIT WWT.COM/TWIT
More info...
124 min
July 3, 2019
SN 721: Exposed Cloud Databases
Ransomware in Florida and elsewhereThe "Going Dark" anti-encryption debateA BlueKeep Proof of Concept demo produced by the guys at SophosLabsMassive publicly-exposed databasesChinese IoT manufacturer logs a million+ customer devices into a 2+ billion record publicly-exposed databaseThe dilemma we have with the utter lack of oversight and control over our own IoT devicesWe invite you to read our show notes at https://www.grc.com/sn/SN-721-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: LastPass.com/twit securitynow.cachefly.com Wasabi.com offer code SecurityNow
More info...
124 min
June 26, 2019
SN 720: Bug Bounty Business
Update on the Linux TCP SACK Kernel panicHackers exploit a Firefox flaw and attack CoinbaseGoogle corrects a flaw with NestcamAn elegant solution to OpenSSH key theft via Rowhammer attacksUpdate on the BlueKeep RDP vulnerabilityVerizon's negligence caused a major Cloudflare and Amazon customer outageNASA was infected by an APT for more than a yearShould you pay ransomware?Microsoft's Chromium-based Edge browser updateThe state of the commercial Bug Bounty BusinessWe invite you to read our show notes at https://www.grc.com/sn/SN-720-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: Atlassian.com/teams/it thehelm.com/SECURITYNOW expressvpn.com/securitynow
More info...
116 min
June 19, 2019
SN 719: Exim Under Siege
A new DRAM problem called "RAMBleed"A bad Linux TCP SACK server kernel crashing flawLast week's patch TuesdayA Bluetooth surpriseAnother useless warning about the BlueKeep vulnerabilityMicrosoft misses a 90-day Tavis Ormandy deadlineGood news about GandCrab wrap upYubico's entropy mistakePost-announce SQRL newsOur favorite iOS security appAttacks on Exim mail servers and other pending disastersWe invite you to read our show notes at https://www.grc.com/sn/SN-719-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: pulseway.com/twit Wasabi.com offer code SecurityNow canary.tools/twit - use code: TWIT
More info...
131 min
June 12, 2019
SN 718: Update Exim Now!
SandboxEscaper drops another 0-dayThe still-not-yet-widely-exploited BlueKeep vulnerabilityGoldBrute Botnet pounding on RDP servers (but not yet using BlueKeep)The FBI issued an interesting advisory about not trusting secure sites just because they're secureVLC receives 33 security bug fixesMicrosoft's Edge browser takes another step forwardMozilla reorganizesMUST HAVE utility of the week: DNS Query SnifferThe first formal full release of SQRLAnyone running an Exim mail server needs to update immediately!We invite you to read our show notes at https://www.grc.com/sn/SN-718-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: WWT.COM/TWIT Atlassian.com/teams/it go.itpro.tv/securitynow promo code SN30
More info...
126 min
June 5, 2019
SN 717: The Nansh0u Campaign
Checking in on the BlueKeep RDP vulnerabilityThe planned shutdown of one of the most "successful" affiliate-based ransomware systemsAn update on the anti-Robocalling problemRussian and Chinese militaries plan to quit using WindowsApple's announcement yesterday of their forthcoming "Sign in with Apple" serviceThe Nansh0u campaign, apparently sourced from China, has successfully compromised many tens of thousands of servers exposed to the Internet.We invite you to read our show notes at https://www.grc.com/sn/SN-717-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: securitynow.cachefly.com Jobs LastPass.com/twit
More info...
122 min
May 29, 2019
SN 716: RDP - Really Do Patch
The Internet is Doomed: BlueKeep Attacks Windows Remote Desktop ProtocolGoogle Stores Unhashed G Suite PasswordsSandbox Escaper Drops FIVE New Zero-Day ExploitsMicrosoft's Just-released Win10 Feature Update 1903Security Enhancements in Firefox's Release 67We invite you to read our show notes at https://www.grc.com/sn/SN-716-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: Prilock.com/twit promo code LEO expressvpn.com/securitynow Atlassian.com/teams/it
More info...
121 min
May 22, 2019
SN 715: CPU.fail
This Week's StoriesThe next round of Intel processor information leakage problems: Microarchitectural Data Sampling vulnerabilitiesLast Tuesday's patches from Microsoft, Adobe and Apple includes one for Windows XPSecurity problem for Cisco that ever has stock analysts taking noticeOngoing troubles with the cryptocurrency marketTrouble with Google's Titan Bluetooth dongleAnother monthly problem with Windows 10 updatesWe invite you to read our show notes at https://www.grc.com/sn/SN-715-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: canary.tools/twit - use code: TWIT WordPress.com/securitynow pulseway.com/twit
More info...
131 min
May 15, 2019
SN 714: Android 'Q'
This Week's StoriesUpdate WhatsApp NOW!Security News from Google I/O 2019 conferenceA new exploitable flaw in all Linux kernels earlier than v5.0.8A new set of flaws affecting all Intel processors known as "ZombieLoad"Security enhancements in Android Q.We invite you to read our show notes at https://www.grc.com/sn/SN-714-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: go.itpro.tv/securitynow promo code SN30 FreshBooks.com/securitynow Atlassian.com/teams/it
More info...
109 min
Feedback on the new Podbay?
    1x
    15
    15
    00:00:00
      00:00:00