logo
episode-header-image
Aug 2024
2h 10m

SN 989: Cascading Bloom Filters - Key Ca...

TWiT
About this episode
  • CrowdStrike Exec's "Most Epic Fail" Award
  • Hardware backdoors discovered in Chinese-made key cards
  • Counterfeit CISCO networking gear
  • SpinRite
  • Errata
  • NPD breach updates from listeners
  • Looking back at old SN episodes
  • Cascading Bloom Filters

Show Notes - https://www.grc.com/sn/SN-989-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Up next
Aug 5
SN 1037: Chinese Participation in MAPP - Why Signal is Leaving Australia
A follow-up to the SharePoint server patch mess. How Russia arranges to spy on other country's local embassies. "Dropbox Passwords" manager app is ending in October. Signal will leave Australia rather than help spy. YouTube deploys viewing history age-estimation heuristics. Chrom ... Show More
2h 47m
Jul 22
SN 1035: Cloudflare's 1.1.1.1 Outage - Bypassing Passkey Protections
Bypassing all passkey protections. The ransomware attacks just keep on coming. Cloudflare capitulates to the MPA and starts blocking. The need for online age verification is exploding. Microsoft really wants Exchange Servers to subscribe. Russia (further) clamps down on Internet ... Show More
2h 48m
May 27
SN 1027: Artificial Intelligence - The Status of Encrypted Client Hello
What the status of Encrypted Client Hello (ECH)? What radio technology would be best for remote inverter shutdown? Some DNS providers already block newly listed domains. Knowing when not to click a link can take true understanding. Why can losing a small portion of a power grid b ... Show More
2h 54m
Recommended Episodes
Nov 2020
SLP231 Stepan Snigirev Build Your Own Hardware Wallet with Specter DIY
Stepan Snigirev (CTO Crypto Advance), and renowned hardware wallet maker rejoins me on the show to talk about Specter DIY and Specter Desktop updates. We chat: Why make your own Security model vs other HWWs Airgapping with QR Use in multi sig setups Specter Desktop updates Links: ... Show More
1h 10m
Sep 2020
SLP215 Michael Flaxman - 10x Your Bitcoin Security With Multisig
After terrifying everyone with his prior SLP appearance re: hardware wallet security, Michael Flaxman rejoins me on the show to talk about his new multisig guide to help users secure their coins without any single point of failure. We cover: What’s improved in the space since las ... Show More
2h 33m
Feb 2021
SLP252 NVK Bitcoin Hardware Wallets vs Air Gapped Computers
NVK, CEO of CoinKite joins me on the show to talk about hardware wallets, air gapped computers and all kinds of useful security questions. This episode will help you learn about the kinds of attacks possible against air gapped computers and hardware wallets, as well as bring some ... Show More
1h 2m
Aug 2019
SLP97 Michael Flaxman - Every Bitcoin Hardware Wallet Sucks
Michael Flaxman, Bitcoin Educator and Developer joins me in this episode (part of the SLP Hardware Wallet Interview series) to talk about the current state of Bitcoin Hardware Wallets. This episode is a must listen to learn the differences between some of the current popular Hard ... Show More
1h 53m
Dec 2020
SLP238 Zach Herbert & Ken Carpenter - Passport by Foundation Devices: Air Gapped Hardware Wallet
The market for high quality hardware wallets is becoming more competitive with new entrants over time. Zach Herbert & Ken Carpenter of Foundation Devices join me to talk about their new upcoming product, Passport. Passport is fully air gapped (QR or microSD), PSBT, and designed w ... Show More
1h 3m
Aug 2021
SLP302 SeedSigner - Bitcoin multi sig security under $50
SeedSigner, pseudonymous creator of the SeedSigner project joins me to talk about his work creating a low cost, accessible, DIY style hardware device that can be part of your multi sig quorum with wallets/coordinators like Specter Desktop, Sparrow Wallet, Blue Wallet. This produc ... Show More
1h 6m
Jan 2025
When retaliation turns digital.
New details emerge about Chinese hackers breaching the US Treasury Department. The Supreme Court considers the TikTok ban. Chinese hackers exploit a zero-day flaw in Ivanti Connect Secure VPN. A new credit card skimmer malware targets WordPress checkout pages. The Banshee macOS i ... Show More
33m 29s
Jul 2021
SLP290 NVK Bitcoin Security & Backups Primer
NVK of Coinkite rejoins me on the show to talk about practical tips on setting up and securing your Bitcoin as well as backups. We chat: Set up tips for newcoiners Desktop wallets to use Passphrases SeedXOR Multi sig Storing backups Estate planning and inheritance Links: Twitter: ... Show More
1h 18m
Jul 2024
Squarespace's square off with hijacked domains.
Some Squarespace users see their domains hijacked. Kaspersky Lab is shutting down US operations. BackPack APKs break malware analysis tools. Hackers use 7zip files to deliver Poco RAT malware. CISA’s red-teaming reveals security failings at an unnamed federal agency. Microsoft fi ... Show More
36m 53s
Aug 2024
80% of professional programmers are unhappy (News)
The latest Stack Overflow Developer Survey has some concerning results, Joeri Sebrechts helps you do plain vanilla web dev, MIT’s “missing semester” course looks pretty amazing, a dive into the fascinating history of CSV & a tool to get request analytics from the nginx access log ... Show More
6m 44s
Listen to millions of songs and podcasts on Anghami