September 30, 2025

Security Now 1045: News and Listener Views

Listen Later

2 hours 49 minutes

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided.

Gmail's spam filtering false-positive spree.

iOS 26's Safari randomizes its fingerprint by default.

Cisco's SNMP stands for "Security Not My Problem".

Windows' "stuck" Extended Security Updates (ESU).

Europe complains, gets 1-year of ESU with no strings.

Where to get $6 TLS certs (really) while they last.

The lessons to learn from Jaguar Land Rover's mess.

The NEON app: get paid to have your voice recorded.

Bluesky's age verification, now coming to Ohio.

What is "Kids Web Services" for age verification.

More than 10K Ollama instances publicly exposed.

GRC's DNS Benchmark reaches "release candidate"

Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!

Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

vanta.com/SECURITYNOW

1password.com/securitynow

Melissa.com/twit

threatlocker.com/twit

zapier.com/twit

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

Total Leo (Audio)

By TWiT

4.3

200200 ratings

September 30, 2025

Security Now 1045: News and Listener Views

Listen Later

2 hours 49 minutes

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided.

Gmail's spam filtering false-positive spree.

iOS 26's Safari randomizes its fingerprint by default.

Cisco's SNMP stands for "Security Not My Problem".

Windows' "stuck" Extended Security Updates (ESU).

Europe complains, gets 1-year of ESU with no strings.

Where to get $6 TLS certs (really) while they last.

The lessons to learn from Jaguar Land Rover's mess.

The NEON app: get paid to have your voice recorded.

Bluesky's age verification, now coming to Ohio.

What is "Kids Web Services" for age verification.

More than 10K Ollama instances publicly exposed.

GRC's DNS Benchmark reaches "release candidate"

Show Notes - https://www.grc.com/sn/SN-1045-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!

Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

vanta.com/SECURITYNOW

1password.com/securitynow

Melissa.com/twit

threatlocker.com/twit

zapier.com/twit

...more