Security Now (Audio)

By TWiT

Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protec... more

· Technology

5

22 ratings

Download on the App Store

Download on the App Store

Get it on Google Play

FAQs about Security Now (Audio):

How many episodes does Security Now (Audio) have?

The podcast currently has 275 episodes available.

Security Now (Audio) episodes:

February 21, 2023SN 911: A Clever Regurgitator - GoneDaddy, Section 230, NPM malware, Hyundai Kia mess, Meta Verified
GoneDaddy, Section 230, NPM malware, Hyundai Kia mess, Meta Verified
Picture of the Week.

GoneDaddy.

Section 230.

No Blue, No SMS-based 2FA.

Bitwarden gets Argon.

"Meta Verified".

Emsisoft Fake Code Signing.

Attacks breaking records.

More Mirai.

NPM malware.

Patch Tuesday.

Samsung announces "Message Guard".

The Hyundai & Kia mess.

A Clever Regurgitator.

Show Notes https://www.grc.com/sn/sn-911-notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
drata.com/twit
GO.ACILEARNING.COM/TWIT
...more
1h 52min
February 14, 2023SN 910: Ascon - Malicious ChatGPT Use, Google Security Key Giveaway, OTPAuth
Picture of the Week

ESXiArgs follow-up

ChatGPT's Malicious Use

Google Security Key Giveaway

Brave goes HTTPS-by-default

1Password Makes Another Passkeys Move

Russian Patriotic Hackers

Amazon to FINALLY Secure Its AWS S3 Instances

More Anti-Chinese Camera Removals

Microsoft to embed Adobe Acrobat PDF reader into Edge

Password Exhaustion

One Time Passowrd OTPAuth

Password Exhaustion

Ascon

Show Notes https://www.grc.com/sn/sn-910-notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
bitwarden.com/twit
plextrac.com/twit
fortra.com
...more
2h 1min
February 07, 2023SN 909: How ESXi Fell - EU Internet Surveillance, QNAP returns, .DEV is always HTTPS
Picture of the Week.

The European Union's Internet Surveillance Proposal.

30,000 patient records online?

.DEV is always HTTPS!

Google changes Chrome's release strategy.

Russia shoots the messenger.

A fool and his Crypto...

QNAP is back.

CVSS severity discrepancy.

Closing the Loop.

How ESXi Fell.

Show Notes: https://www.grc.com/sn/SN-909-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
drata.com/twit
barracuda.com/securitynow
canary.tools/twit - use code: TWIT
...more
2h 14min
January 31, 2023SN 908: Data Operand Independent Timing - Old Android apps, Kevin Rose, iOS 6.3 and FIDO, Hive hacked
Android to start blocking old and unsafe apps.

Microsoft to block Internet sourced Excel add-ins.

An example of saying "no" even when it may hurt.

Hacked Wormhole funds on the move.

Kevin Rose Hacked.

Facebook will be moving more users into E2EE.

iOS 6.3 and FIDO.

Scan thy Citizenry.

The Hive ransomware organization takedown.

Errata.

Closing the Loop.

SpinRite.

Data Operand Independent Timing.

Show Notes: https://www.grc.com/sn/SN-908-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
Melissa.com/twit
kolide.com/securitynow
...more
1h 45min
January 24, 2023SN 907: Credential Reuse - iOS 16.3, ChatGPT creates malware, Bitwarden acquires Passwordless.dev
Picture of the Week.

PayPal Credential Stuffing.

iOS 16.3 : Cloud encryption for all.

InfoSecurity Magazine: "ChatGPT Creates Polymorphic Malware".

CheckPoint Research: OPWNAI : Cybercriminals Starting to Use ChatGPT.

"Meta" fined for the third time.

Bitwarden acquires "Passwordless.dev".

Closing the Loop.

SpinRite.

Credential Reuse.

Show Notes: https://www.grc.com/sn/SN-907-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
GO.ACILEARNING.COM/TWIT
expressvpn.com/securitynow
drata.com/twit
...more
1h 45min
January 17, 2023SN 906: The Rule of Two - Norton Lifelock Data Breach, Chromium and Rust, LastPass
Picture of the Week

About Password Iterations

EBC or CB

Norton Lifelock Troubles

Chrome Follows Microsoft and Firefox

Chromium is Beginning to Rust

BYOVD and Windows Defender Failures

Closing the Loop (feedback)

The Rule of Two

Show notes: https://www.grc.com/sn/sn-906-notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
plextrac.com/twit
bitwarden.com/twit
barracuda.com/securitynow
...more
1h 55min
January 10, 2023SN 905: 1 - LastPass Aftermath, LastPass vault de-obfuscator, LastPass iteration count folly
Picture of the Week.

LastPass Aftermath.

LastPass Vault De-Obfuscator.

What more do we know this week regarding LastPass?

The most alarming discovery by listeners.

Understanding the scale of GPU-enhanced password cracking.

On the true strength of passwords.

Feedback from listeners regarding LastPass.

Show Notes https://www.grc.com/sn/SN-905-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
tanium.com/twit
drata.com/twit
...more
1h 52min
January 03, 2023SN 904: Leaving LastPass - How LastPass failed, Steve's next password manager, how to protect yourself
Picture of the Week.

SpinRite.

Leaving LastPass.

Is there reason for concern?

Well known password cracker Jeremi Gosney's LastPass rant.

Steve shares his plan regarding LastPass.

What is Steve's next password manager?

What should LastPass users do to protect themselves?

Show Notes https://www.grc.com/sn/SN-904-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
fortra.com
canary.tools/twit - use code: TWIT
...more
2h 3min
December 27, 2022SN 903: Security Now Best of 2022 - The best moments from throughout the year
Anatomy of a Log4j Exploit.

Will Russia Disconnect?

FCC Says Kaspersky Labs is a National Security Threat.

Lenovo UEFI Firmware Troubles.

That "Passkeys" Thing.

Dis-CONTI-nued: The End of Conti?

Steve's Take on the LastPass Breach.

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
expressvpn.com/securitynow
kolide.com/securitynow
...more
2h 20min
December 20, 2022SN 902: A Generic WAF Bypass - Pwn2Own Toronto, URSNIF malware, Vivaldi Mastodon support, Bye Bye SHA-1
Picture of the Week.

A malware operation known as URSNIF.

Pwn2Own Toronto 2022.

Citrix and Fortinet recently released security updates to patch 0-day vulnerabilities.

Patch Tuesday.

Another Uber breach?

Elon Botches 'Bot Blockage.

Vivaldi integrates Mastodon in its desktop browser.

5,200 Dutch government warnings.

CIB: "Coordinated Inauthentic Behavior"

GitHub to require 2FA by the end of next year.

Bye bye SHA-1.

WordFence's VERY useful looking WordPress add-on vulnerability database.

Closing The Loop.

SpinRite.

A Generic WAF Bypass.

Show Notes https://www.grc.com/sn/SN-902-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsor:
plextrac.com/twit
...more
1h 57min

FAQs about Security Now (Audio):

How many episodes does Security Now (Audio) have?

The podcast currently has 275 episodes available.

More shows like Security Now (Audio)

This Week in Tech (Audio) by TWiT

This Week in Tech (Audio)

3,014 Listeners

Hands-On Tech (Audio) by TWiT

Hands-On Tech (Audio)

1,968 Listeners

WSJ Tech News Briefing by The Wall Street Journal

WSJ Tech News Briefing

1,647 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

1,970 Listeners

MacBreak Weekly (Audio) by TWiT

MacBreak Weekly (Audio)

2,013 Listeners

Windows Weekly (Audio) by TWiT

Windows Weekly (Audio)

870 Listeners

Risky Business by Patrick Gray

Risky Business

361 Listeners

No Agenda Show by Adam Curry & John C. Dvorak

No Agenda Show

5,961 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

626 Listeners

Tech News Weekly (Audio) by TWiT

Tech News Weekly (Audio)

1,066 Listeners

Accidental Tech Podcast by Marco Arment, Casey Liss, John Siracusa

Accidental Tech Podcast

2,092 Listeners

Windows Weekly (Audio) by TWiT

Windows Weekly (Audio)

2 Listeners

Cyber Security Headlines by CISO Series

Cyber Security Headlines

127 Listeners

Human Events Daily with Jack Posobiec by Human Events with Jack Posobiec

Human Events Daily with Jack Posobiec

5,909 Listeners