May 2024

2h 11m

SN 972: Passkeys: A Shattered Dream? - I...

TWiT

About this episode

GCHQ: No more default passwords for consumer IoT devices!
What happened with Chrome and 3rd-party cookies?
Race conditions and multi-threading
GM "accidentally" enrolled millions into "OnStar Smart Driver +" program
Steve recommends Ryk Brown's "Frontiers Saga"
SpinRite update
Passkeys: A Shattered Dream?

Show Notes - https://www.grc.com/sn/SN-972-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Up next

Feb 2025

SN 1014: FREEDOM Administration Login - Apple's UK Privacy Showdown, $1.5 Billion Crypto Heist

Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in ... Show More

2h 39m

Feb 2025

SN 1011: Jailbreaking AI - Deepseek, "ROUTERS" Act, Zyxel Vulnerability

Why was DeepSeek banned by Italian authorities? What internal proprietary DeepSeek data was found online? What is "DeepSeek" anyway? Why do we care, and what does it mean? Did Microsoft just make OpenAI's strong model available for free? Google explains how generative AI can be a ... Show More

3h 1m

Dec 2024

SN 1006: Best of 2024 - Apple's Secret Backdoor, CrowdStrike Catastrophe, Recall's Privacy Nightmare

Leo revisits some of the year's top Security Now segments of 2024. 956. Apple's Hardware Backdoor: Steve reflects on the previous week's 'The Mystery of CVE-2023-38606' deep-dive. Did Apple deliberately designed a secure backdoor? 960. Unforeseen Consequences of Google's 3rd-part ... Show More

2h 32m

Recommended Episodes

Aug 2023

549: Unauthorized Trash Can

<ul> <li>Pre-show: <ul> <li>Marco’s box truck <ul> <li><a href="https://truckmap.com">TruckMap</a></li> <li><a href="http://truckerpath.com">Trucker Path</a></li> </ul></li> </ul></li> <li>🗣️ New <a href="https://atp.fm/survey">ATP Membership Survey</a> 🗣️<br /> (Thi ... Show More

1h 59m

Apr 2025

Meta & Google antitrust, Apple recycling tips & AI-powered scams

Rich discusses major antitrust cases against Meta and Google—and what they could mean for the future of Big Tech. Richard in Bell, California asks why his PayPal transaction won’t go through on a website. Dennis in San Dimas is looking for a NAS drive that works with both Windows ... Show More

1h 47m

Jun 2024

Breaking the Compromise: Unravelling the Truths of Cyber Security with Lianne Potter and Jeff Watkins

<h3>Avalonia XPF</h3> <p>This episode of The Modern .NET Show is supported, in part, by <a href= "http://avaloniaui.net/themoderndotnetshow?utm_source=Podcasts&utm_campaign=The+.Modern+NET+Show+s6e21" target="_blank" rel="noopener">Avalonia XPF</a>, a binary-compatible cross-plat ... Show More

1h 12m

Dec 2024

When AI goes offline.

ChatGPT and Meta face widespread outages. Trump advisors explore splitting NSA and CyberCom leadership roles. A critical vulnerability in Apache Struts 2 has been disclosed. “AuthQuake” allowed attackers to bypass Microsoft MFA protections. Researchers identify Nova, a sophistica ... Show More

27m 10s

Sep 2025

Blizzard warning: Amazon freezes midnight hack.

Researchers disrupt a cyber campaign by Russia’s Midnight Blizzard. The Salesloft Drift breach continues to ripple outward. WhatsApp patches a critical flaw in its iOS and Mac apps. A fake PDF editing tool delivers the TamperChef infostealer. A hacker finds crash data Tesla claim ... Show More

32m 11s

May 2025

Episode 537: Userlist with Benedikt Deicke

Benedikt used to be a freelance software engineer and co-founded Userlist in 2017 as a side project with his co-founder Jane Portman. They went full-time on it in 2020. Benedikt enjoys database query optimization just as much as pushing around pixels on the front-end Show Notes * ... Show More

28m 17s

Mar 2024

578: Weird Can Be Beautiful

Pre-show: ATP Overtime ATP Insider: John’s Windows ATP 96: The Windows of Siracusa County ATP Membership FAQ AppStories Follow-up: Callsheet available on visionOS “Put me on Aux” (via Sam Davies) Spotify & free users (via Colin Meney) 256 GB M3 MacBook Air has 2× 128 GB NAND chip ... Show More

1h 51m