logo
episode-header-image
Mar 2023
1h 44m

SN 912: The NSA @ Home - LastPass hack d...

TWiT
About this episode
  • Picture of the Week.
  • Windows 11? ... anyone?
  • As Plain as Ever.
  • Edge's new built-in VPN?
  • LastPass Incident Update.
  • Signal says NO to the UK.
  • More PyPI troubles.
  • The QNAP bug bounty program.
  • SpinRite.
  • The NSA @ Home.

Show Notes: https://www.grc.com/sn/SN-912-Notes.pdf
 

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsor:

Up next
Yesterday
SN 1039: The Sad Case of ScriptCase - Data Brokers Dodge Deletion
What AI website summaries mean for Internet economics. Time to urgently update Plex Servers (again). Allianz Life stolen data gets leaked. Chrome test Incognito-mode fingerprint script blocking. Chrome 140 additions coming in 2 weeks. Data brokers hide opt-out pages from search e ... Show More
2h 51m
Aug 12
SN 1038: Perplexity's Duplicity - Malicious Repository Libraries
CISA's Emergency Directive to ALL Federal agencies re: SharePoint. NVIDIA firmly says "no" to any embedded chip gimmicks. Dashlane is terminating its (totally unusable) free tier. Malicious repository libraries are becoming even more hostile. The best web filter (uBlock Origin) c ... Show More
3h 3m
Aug 5
SN 1037: Chinese Participation in MAPP - Why Signal is Leaving Australia
A follow-up to the SharePoint server patch mess. How Russia arranges to spy on other country's local embassies. "Dropbox Passwords" manager app is ending in October. Signal will leave Australia rather than help spy. YouTube deploys viewing history age-estimation heuristics. Chrom ... Show More
2h 47m
Recommended Episodes
Feb 2019
Social engineering and the power of brands. Insecure check-ins? APT10 is quiet but not gone. MacOS Keychain bug. Assessment of Chinese device manufacturers continues.
In today’s podcast, we hear about social engineering, with a few new twists. Some airlines may be exposing passenger data with insecure check-in links. APT10 may be lying low, for now, but the US Department of Homeland Security expects the cyber spies to be back. A researcher fin ... Show More
21m 57s
Jan 2023
Episode 2: Exploit Writing & Automation / Do you need to know how to program to hack?
Episode 2: In this episode of Critical Thinking - Bug Bounty Podcast we talk about exploit writing/automation, some new tools released in the industry (Of-CORS), the age old question of "Do you have to know how to program to hack?", a walk-through of some very impactful bug bount ... Show More
1h 14m
Feb 2023
Episode 7: PortSwigger Top 10, TruffleSecurity Drama, and More!
Episode 7: In this episode of Critical Thinking - Bug Bounty Podcast we talk about PortSwigger's Top 10 Web Hacking Techniques of 2022 (link below), some drama surrounding TruffleSecurity's XSS Hunter, and, as always, some great bug bounty tips.Sorry if the audio is a little roug ... Show More
56m 39s
May 2021
HARD PROBLEMS: Ransomware, Sandboxes and Security
American Hacker Jeffrey "Sneak" Paul joins Bram for a deep-dive into the hard problems behind the growing rash of ransomware attacks, what it means and what we can do about it.This episode is sponsored by Nexo.io and Bitstamp.On this episode we’re digging into, not a new problem, ... Show More
1h 7m
Feb 2023
Episode 5: AI Security, Hacking WiFi, the New XSS Hunter, and more
Episode 5: In this episode of Critical Thinking - Bug Bounty Podcast we talk about the new XSS Hunter, MD5 collisions and using ChatGPT for security, and much more!Follow us on twitter at: @ctbbpodcastWe're new to this podcasting thing, so feel free to send us any feedback here: ... Show More
53m 29s
Listen to millions of songs and podcasts on Anghami