logo
episode-header-image
May 2024
2h 14m

SN 975: 312 Scientists & Researchers Res...

TWiT
About this episode
  • When you're the biggest target...
  • Searching for Search
  • How long will a Windows XP machine survive unprotected on the Internet?
  • Free Laundry
  • VPNs and Firewalls
  • Netgate SG1100
  • Ad Industry vs. Google Privacy Sandbox
  • Bitwarden and passkeys
  • Token2 passkey dongle
  • 312 Scientists & Researchers Respond

Show Notes - https://www.grc.com/sn/SN-975-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Up next
Feb 2025
SN 1014: FREEDOM Administration Login - Apple's UK Privacy Showdown, $1.5 Billion Crypto Heist
Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in ... Show More
2h 39m
Feb 2025
SN 1011: Jailbreaking AI - Deepseek, "ROUTERS" Act, Zyxel Vulnerability
Why was DeepSeek banned by Italian authorities? What internal proprietary DeepSeek data was found online? What is "DeepSeek" anyway? Why do we care, and what does it mean? Did Microsoft just make OpenAI's strong model available for free? Google explains how generative AI can be a ... Show More
3h 1m
Dec 2024
SN 1006: Best of 2024 - Apple's Secret Backdoor, CrowdStrike Catastrophe, Recall's Privacy Nightmare
Leo revisits some of the year's top Security Now segments of 2024. 956. Apple's Hardware Backdoor: Steve reflects on the previous week's 'The Mystery of CVE-2023-38606' deep-dive. Did Apple deliberately designed a secure backdoor? 960. Unforeseen Consequences of Google's 3rd-part ... Show More
2h 32m
Recommended Episodes
Feb 2025
Build software that lasts! (Interview)
After 30+ years in the software industry, Bert Hubert has experienced a lot. He founded PowerDNS, published articles for places like IETF / IEEE, and built his own parliament monitoring system. That just scratches the surface. Recently, Bert wrote about what it takes to build ... Show More
1h 27m
Feb 2025
10,000 Days in Cybersecurity
Cybersecurity has changed dramatically over the past 10,000 days. In this episode of Threat Vector, host David Moulton speaks with Haider Pasha, Chief Security Officer for EMEA & LATAM at Palo Alto Networks, about how the field has evolved and what’s coming next. From his early e ... Show More
36m 19s
Dec 2021
The Mystery of Stuxnet | Cracking the Code | S57-E1
<p>In the summer of 2010, a mysterious computer virus called Stuxnet lands on the desk of Symantec cybersecurity analyst Liam O’Murchu. Stuxnet is unlike anything O’Murchu has ever seen: a highly sophisticated piece of malware that serves no obvious purpose. O’Murchu and his coll ... Show More
41m 1s
Jul 2024
Squarespace's square off with hijacked domains.
Some Squarespace users see their domains hijacked. Kaspersky Lab is shutting down US operations. BackPack APKs break malware analysis tools. Hackers use 7zip files to deliver Poco RAT malware. CISA’s red-teaming reveals security failings at an unnamed federal agency. Microsoft fi ... Show More
30m 53s
Apr 2025
Is Google Breaking Up? + Seasteading Is Back + Tool Time
<p>This week, with big developments in two antitrust cases against Google, we discuss how the company may be forced to change its business. Then we’re joined by the journalist Mark Yarm to discuss his recent visit to an underwater home for his article about techno-utopians who wa ... Show More
1h 7m
Dec 2024
When AI goes offline.
ChatGPT and Meta face widespread outages. Trump advisors explore splitting NSA and CyberCom leadership roles. A critical vulnerability in Apache Struts 2 has been disclosed. “AuthQuake” allowed attackers to bypass Microsoft MFA protections. Researchers identify Nova, a sophistica ... Show More
27m 10s
Aug 2024
Cyber revolt or just digital ruckus?
Hacktivists respond to the arrest of Telegram’s CEO in France. Stealthy Linux malware stayed undetected for two years. Versa Networks patches a zero-day vulnerability. Google has patched its tenth zero-day vulnerability of 2024. Researchers at Arkose labs document Greasy Opal. A ... Show More
25m 20s
Listen to millions of songs and podcasts on Anghami