Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protect yourself and your business. Security Now is a must listen for security professionals every week. Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.


Security Now (Audio)

<ul> 
<li>The dangers of doing things you don't understand.</li> 
<li>Espressif responds to the claims of an ESP32 backdoor.</li> 
<li>A widely leveraged mistake Microsoft stubbornly refuses to correct.</li> 
<li>A disturbingly simple remote takeover of Apache Tomcat servers.</li> 
<li>A 10/10 vulnerability affecting some ASUS, ASRock and HPE motherboards.</li> 
<li>Google snapped up another cloud security firm but paid a price!</li> 
<li>RCS messaging to soon get full end-to-end encryption (done right!).</li> 
<li>How did an AI Crypto Chatbot lose $105,000? ...and what is an AI Crypto Chatbot?</li> 
<li>Looks like Oracle may take stewardship of TikTok to keep it in-country.</li> 
<li>Whoops! 23andMe is sinking — don't let them take your genetics with them!</li> 
<li>The White House says "the cyber guys should stay!"</li> 
<li>AI project failure rates are on the rise. Anyone surprised?</li> 
<li>Listener feedback, and a very interesting update on just how looming is the threat from quantum computing?</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1018-Notes.pdf">https://www.grc.com/sn/SN-1018-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="http://zscaler.com/security" target="_blank" rel="sponsored">zscaler.com/security</a></li>
<li><a href="http://legatosecurity.com" target="_blank" rel="sponsored">legatosecurity.com</a></li>
<li><a href="http://joindeleteme.com/twit" target="_blank" rel="sponsored">joindeleteme.com/twit promo code TWIT</a></li>
</ul>

SN 1018: The Quantum Threat - ESP32 Backdoor Update, RCS E2EE

<ul> 
<li>An analysis of Telegram Messenger's crypto.</li> 
<li>A beautiful statement of the goal of modern crypto design.</li> 
<li>Who was behind Twitter's recent outage trouble?</li> 
<li>An embedded Firefox root certificate expired. Who was surprised?</li> 
<li>AI-generated Github repos, voice cloning, Patch Tuesday and an Apple 0-day.</li> 
<li>The FBI warns of another novel attack vector that's seeing a lot of action.</li> 
<li>Google weighs in on the Age Verification controversy.</li> 
<li>In a vacuum, Kazakhstan comes up with their own solution.</li> 
<li>Was Google also served an order from the UK? Can they say?</li> 
<li>A serious PHP vulnerability you need to know you don't have.</li> 
<li>A bunch of great listener feedback, some Sci-Fi content reviews and...</li> 
<li>A new tool allows YOU to test YOUR PCs for their RowHammer susceptibility</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1017-Notes.pdf">https://www.grc.com/sn/SN-1017-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="http://vanta.com/SECURITYNOW" target="_blank" rel="sponsored">vanta.com/SECURITYNOW</a></li>
<li><a href="http://bitwarden.com/twit" target="_blank" rel="sponsored">bitwarden.com/twit</a></li>
<li><a href="https://www.threatlocker.com/pages/solutions?utm_medium=podcast&utm_source=twit&utm_campaign=securitynow" target="_blank" rel="sponsored">threatlocker.com for Security Now</a></li>
<li><a href="https://www.veeam.com/?utm_source=twit.tv&utm_medium=audio&utm_campaign=brand-campaign&utm_content=sn" target="_blank" rel="sponsored">veeam.com</a></li>
</ul>

SN 1017: Is YOUR System Vulnerable to RowHammer? - Telegram's Crypto, Twitter Outage, FBI Warning

<ul> 
<li>Utah passes age verification requirement for app stores.</li> 
<li>The inside story on fake North Korean employees. Is that a Texas accent?</li> 
<li>An update on the ongoing Bybit cryptoheist saga.</li> 
<li>The industry may be making some changes in the wake of the Bybit attack.</li> 
<li>Apple pushes back legally against the UK's secret order.</li> 
<li>Did someone crack Passkeys?</li> 
<li>The UK launches a legal salvo at an innocent security researcher.</li> 
<li>The old data breach we witnessed that just keeps on giving.</li> 
<li>A bit more Bybit postmortem forensic news.</li> 
<li>A lesson to learn from a clever and effective ransomware attack.</li> 
<li>And what about that Bluetooth Backdoor discovery everyone is talking about?</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1016-Notes.pdf">https://www.grc.com/sn/SN-1016-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="http://1password.com/securitynow" target="_blank" rel="sponsored">1password.com/securitynow</a></li>
<li><a href="http://uscloud.com" target="_blank" rel="sponsored">uscloud.com</a></li>
<li><a href="http://joindeleteme.com/twit" target="_blank" rel="sponsored">joindeleteme.com/twit promo code TWIT</a></li>
<li><a href="http://zscaler.com/security" target="_blank" rel="sponsored">zscaler.com/security</a></li>
<li><a href="http://canary.tools/twit" target="_blank" rel="sponsored">canary.tools/twit - use code: TWIT</a></li>
</ul>

SN 1016: The Bluetooth Backdoor - North Korean Texans, Apple Pushes Back

<ul> 
<li>Firefox amends their privacy policy -- the world melts down.</li> 
<li>Signal threatens to leave Sweden.</li> 
<li>Aftermath of the massive $1.5 billion Bybit ETH heist.</li> 
<li>It turns out that it wasn't actually Bybit's fault.</li> 
<li>"The Lazarus Bounty" monitoring and management site.</li> 
<li>Mozilla's commitment to Manifest V2 (and the uBlock Origin).</li> 
<li>What does the ACM's plea for memory-safe languages mean for developers?</li> 
<li>What exactly are memory-safe languages?</li> 
<li>Australia joins the Kaspersky ban.</li> 
<li>Gmail plans to switch from SMS to QR code authentication.</li> 
<li>A SpinRite success and some fun feedback.</li> 
<li>An astonishing new technology for targeted radio jamming</li></ul> 
Show Notes - https://www.grc.com/sn/SN-1015-Notes.pdf 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="http://legatosecurity.com" target="_blank" rel="sponsored">legatosecurity.com</a></li>
<li><a href="http://bitwarden.com/twit" target="_blank" rel="sponsored">bitwarden.com/twit</a></li>
<li><a href="https://www.veeam.com/?utm_source=twit.tv&utm_medium=audio&utm_campaign=brand-campaign&utm_content=sn" target="_blank" rel="sponsored">veeam.com</a></li>
<li><a href="https://www.threatlocker.com/pages/solutions?utm_medium=podcast&utm_source=twit&utm_campaign=securitynow" target="_blank" rel="sponsored">threatlocker.com for Security Now</a></li>
</ul>

SN 1015: Spatial-Domain Wireless Jamming - Firefox Privacy Policy, Signal Leaving Sweden?

<ul> 
<li>Apple disables Advanced Data Protection for new UK users.</li> 
<li>Paying ransoms is not as cut and dried as we might imagine.</li> 
<li>Elon Musk's "X" social media blocks "Signal.me" links.</li> 
<li>Spain's soccer league blocks Cloudflare and causes a mess.</li> 
<li>Two new (and rare) vulnerabilities discovered in OpenSSH.</li> 
<li>The U.S. seems unable to evict Chinese attackers from its Telecom systems.</li> 
<li>What are those Chinese "Salt Typhoon" hackers doing to get in?</li> 
<li>The largest (by far) cryptocurrency heist in history occurred Friday.</li> 
<li>Ex-NSA head says the U.S. is falling behind on the cyber front lines.</li> 
<li>We have the winner (and a good one) replacement term for "backdoor".</li> 
<li>A look at a pathetic access control system that begs to be hacked (and will be).</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1014-Notes.pdf" target="_blank">https://www.grc.com/sn/SN-1014-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="http://zscaler.com/security" target="_blank" rel="sponsored">zscaler.com/security</a></li>
<li><a href="http://joindeleteme.com/twit" target="_blank" rel="sponsored">joindeleteme.com/twit promo code TWIT</a></li>
<li><a href="http://uscloud.com" target="_blank" rel="sponsored">uscloud.com</a></li>
<li><a href="http://canary.tools/twit" target="_blank" rel="sponsored">canary.tools/twit - use code: TWIT</a></li>
</ul>

SN 1014: FREEDOM Administration Login - Apple's UK Privacy Showdown, $1.5 Billion Crypto Heist

<ul> 
<li>US lawmakers respond to the UK's outrageous demand about Apple's encryption.</li> 
<li>What, exactly, is a "backdoor", and can a "backdoor" NOT be secret?</li> 
<li>Highlights from last week's Windows' Patch Tuesday.</li> 
<li>A look into RansomHub: The latest king of the Ransomware hill.</li> 
<li>"TOAD": Telephone-Oriented Attack Delivery.</li> 
<li>The state of Texas -versus- DeepSeek.</li> 
<li>Disabling Apple's "Restricted Mode".</li> 
<li>Where did I put that $800 million in Bitcoin?</li> 
<li>A Sci-Fi author update.</li> 
<li>And a deep dive into the misoperation of Chrome's critically important Web Extension Store</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1013-Notes.pdf">https://www.grc.com/sn/SN-1013-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="https://www.veeam.com/?utm_source=twit.tv&utm_medium=audio&utm_campaign=brand-campaign&utm_content=sn" target="_blank" rel="sponsored">veeam.com</a></li>
<li><a href="http://legatosecurity.com" target="_blank" rel="sponsored">legatosecurity.com</a></li>
<li><a href="https://www.threatlocker.com/pages/solutions?utm_medium=podcast&utm_source=twit&utm_campaign=securitynow" target="_blank" rel="sponsored">threatlocker.com for Security Now</a></li>
<li><a href="http://bitwarden.com/twit" target="_blank" rel="sponsored">bitwarden.com/twit</a></li>
<li><a href="http://vanta.com/SECURITYNOW" target="_blank" rel="sponsored">vanta.com/SECURITYNOW</a></li>
</ul>

SN 1013: The Chrome Web Store is a mess - Apple Encryption in the UK, Texas Vs. DeepSeek

<ul> 
<li>New "SparkCat" secret-stealing AI image scanner discovered in App and Play stores.</li> 
<li>The UK demands that Apple does the impossible: decrypting ADP cloud data.</li> 
<li>France moves forward on legislation to require backdoors to encryption.</li> 
<li>Firefox moves to 135 with a bunch of useful new features.</li> 
<li>The Five Eyes alliance publishes edge-device security guidance.</li> 
<li>Six NetGear routers contain CVSS 9.6 and 9.8 vulnerabilities.</li> 
<li>Sysinternals utilities allow malicious Windows DLL injection.</li> 
<li>Google removes restrictive do-gooder language from AI application policies.</li> 
<li>"AI Fuzzing" successfully jailbreaks the most powerful ChatGPT o3 model.</li> 
<li>Examining the well and deliberately hidden truth behind ransomware cyberattacks on U.S. K-12 schools</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1012-Notes.pdf">https://www.grc.com/sn/SN-1012-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="http://joindeleteme.com/twit" target="_blank" rel="sponsored">joindeleteme.com/twit promo code TWIT</a></li>
<li><a href="http://canary.tools/twit" target="_blank" rel="sponsored">canary.tools/twit - use code: TWIT</a></li>
<li><a href="http://zscaler.com/security" target="_blank" rel="sponsored">zscaler.com/security</a></li>
<li><a href="http://uscloud.com" target="_blank" rel="sponsored">uscloud.com</a></li>
<li><a href="http://1password.com/securitynow" target="_blank" rel="sponsored">1password.com/securitynow</a></li>
</ul>

SN 1012: Hiding School Cyberattacks - SparkCat, Decrypting ADP, AI Fuzzing

<ul> 
<li>Why was DeepSeek banned by Italian authorities?</li> 
<li>What internal proprietary DeepSeek data was found online?</li> 
<li>What is "DeepSeek" anyway? Why do we care, and what does it mean?</li> 
<li>Did Microsoft just make OpenAI's strong model available for free?</li> 
<li>Google explains how generative AI can be and is being misused.</li> 
<li>An actively exploited and unpatched Zyxel router vulnerability.</li> 
<li>The new US "ROUTERS" Act.</li> 
<li>Is pirate-site blocking legislation justified or is it censorship?</li> 
<li>Russia's blocked website count tops 400,000.</li> 
<li>Microsoft adds "scareware" warnings to Edge.</li> 
<li>Bitwarden improves account security.</li> 
<li>What's still my favorite disk imaging tool?</li> 
<li>And let's take a close look into the extraction of proscribed knowledge from today's AI</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1011-Notes.pdf">https://www.grc.com/sn/SN-1011-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="https://www.threatlocker.com/pages/solutions?utm_medium=podcast&utm_source=twit&utm_campaign=securitynow" target="_blank" rel="sponsored">threatlocker.com for Security Now</a></li>
<li><a href="https://www.veeam.com/?utm_source=twit.tv&utm_medium=audio&utm_campaign=brand-campaign&utm_content=sn" target="_blank" rel="sponsored">veeam.com</a></li>
<li><a href="http://bitwarden.com/twit" target="_blank" rel="sponsored">bitwarden.com/twit</a></li>
</ul>

SN 1011: Jailbreaking AI - Deepseek, "ROUTERS" Act, Zyxel Vulnerability

<ul> 
<li>eM Client CAN be purchased outright.</li> 
<li>An astonishing 5-year-old typo in MasterCard's DNS.</li> 
<li>An unwelcome surprise received by 18,459 low-level hackers.</li> 
<li>DDoS attacks continue growing, seemingly without any end in sight.</li> 
<li>Let's Encrypt clarifies their plans for 6-day "we barely knew you" certificates.</li> 
<li>SpinRite uncovers a bad brand new 8TB drive.</li> 
<li>Listener feedback about TOTP, Syncthing and UDP hole punching, email spam, ValiDrive speed, AI neural nets, DJI geofencing, and advertising in the "New" Outlook.</li> 
<li>A look into the tradeoffs required to obtain privacy for our DNS lookups</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1010-Notes.pdf" target="_blank">https://www.grc.com/sn/SN-1010-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>. 
Join Club TWiT for Ad-Free Podcasts! 
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a>
Sponsors:<ul>
<li><a href="http://uscloud.com" target="_blank" rel="sponsored">uscloud.com</a></li>
<li><a href="http://joindeleteme.com/twit" target="_blank" rel="sponsored">joindeleteme.com/twit promo code TWIT</a></li>
<li><a href="http://bitwarden.com/twit" target="_blank" rel="sponsored">bitwarden.com/twit</a></li>
<li><a href="http://zscaler.com/security" target="_blank" rel="sponsored">zscaler.com/security</a></li>
</ul>

SN 1010: DNS Over TLS - Record DDoS,  Hackers Get Hacked

<ul> 
<li>What do we learn from January's record breaking 0-day critical Patch Tuesday?</li> 
<li>Microsoft to "force-install" a new Outlook into all Windows 10 and 11 desktops?</li> 
<li>GoDaddy required to get much more serious about its hosting security.</li> 
<li>More age verification enforcement is coming, including globally.</li> 
<li>What another instance of a widely exposed management interface teaches us.</li> 
<li>DJI drone's official firmware update lifts geofencing for unrestricted flight.</li> 
<li>CISA's efforts pay off with MUCH improved critical infrastructure security.</li> 
<li>Listener feedback about TOTP, HOTP and age-verification.</li> 
<li>And we take a deep dive into cracking authenticator keys</li></ul> 
Show Notes - <a href="https://www.grc.com/sn/SN-1009-Notes.pdf">https://www.grc.com/sn/SN-1009-Notes.pdf</a> 
Hosts: <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a> and <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> 
Download or subscribe to Security Now at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>. 
Get episodes ad-free with Club TWiT at <a href="https://twit.tv/clubtwit" rel="payment">https://twit.tv/clubtwit</a> 
You can submit a question to Security Now at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>. 
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>.
Sponsors:<ul>
<li><a href="http://vanta.com/SECURITYNOW" target="_blank" rel="sponsored">vanta.com/SECURITYNOW</a></li>
<li><a href="http://bitwarden.com/twit" target="_blank" rel="sponsored">bitwarden.com/twit</a></li>
<li><a href="https://www.threatlocker.com/pages/solutions?utm_medium=podcast&utm_source=twit&utm_campaign=securitynow" target="_blank" rel="sponsored">threatlocker.com for Security Now</a></li>
<li><a href="https://www.veeam.com/?utm_source=twit.tv&utm_medium=audio&utm_campaign=brand-campaign&utm_content=sn" target="_blank" rel="sponsored">veeam.com</a></li>
</ul>

Podurama

Home

Trending

Personal

Your Podcasts

New Episodes

My Files

Favourite Episodes

Tags (Folders)

Recently Played

Bookmarks

Followed Playlists