100 episodes

Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protect yourself and your business. Security Now is a must listen for security professionals every week.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.

Security Now (Audio‪)‬ Security Now

    • Technology
    • 5.0 • 3 Ratings

Listen on Apple Podcasts
Requires subscription and macOS 11.4 or higher

Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protect yourself and your business. Security Now is a must listen for security professionals every week.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.

Listen on Apple Podcasts
Requires subscription and macOS 11.4 or higher

    GhostRace - AT&T Breach Update, Cookie Notices, Router Buttons

    GhostRace - AT&T Breach Update, Cookie Notices, Router Buttons

    An update on the AT&T data breach
    340,000 social security numbers leaked
    Cookie Notice Compliance
    The GDPR does enforce some transparency
    Physical router buttons
    Wifi enabled button pressers
    Netsecfish disclosure of Dlink NAS vulnerability
    Chrome bloat
    SpinRite update
    GhostRace
    Show Notes - https://www.grc.com/sn/SN-970-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    kolide.com/securitynow
    bitwarden.com/twit
    vanta.com/SECURITYNOW
    1bigthink.com

    • 1 hr 52 min
    Minimum Viable Secure Product - Dlink NAS Backdoor, Privnote, Crowdefense

    Minimum Viable Secure Product - Dlink NAS Backdoor, Privnote, Crowdefense

    Out-of-support DLink NAS devices contain hard coded backdoor credentials

    Privnote is not so "Priv"

    Crowdfense is willing to pay millions

    Engineers Pinpoint Cause of Voyager 1 Issue, Are Working on Solution

    SpinRite Update

    Minimum Viable Secure Product

    Show Notes - https://www.grc.com/sn/SN-969-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    zscaler.com/zerotrustAI
    business.eset.com/twit
    lookout.com
    joindeleteme.com/twit promo code TWIT

    • 1 hr 51 min
    A Cautionary Tale - XZ Outbreak, AT&T Data Breach

    A Cautionary Tale - XZ Outbreak, AT&T Data Breach

    A near-Universal (Local) Linux Elevation of Privilege vulnerability
    TechCrunch informed AT&T of a 5 year old data breach
    Signal to get very useful cloud backups
    Telegram to allow restricted incoming
    HP exits Russia ahead of schedule
    Advertisers are heavier users of Ad Blockers than average Americans!
    The Google Incognito Mode Lawsuit
    Canonical fights malicious Ubuntu store apps
    Spinrite update
    A Cautionary Tale
    Show Notes - https://www.grc.com/sn/SN-968-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    1bigthink.com
    kolide.com/securitynow
    Melissa.com/twit
    vanta.com/SECURITYNOW

    • 1 hr 45 min
    GoFetch - Apple vs. DOJ, ".INTERNAL" TLD

    GoFetch - Apple vs. DOJ, ".INTERNAL" TLD

    Apple vs U.S. DOJ
    G.M.'s Unbelievably Horrible Driver Data Sharing Ends
    Super Sushi Samurai
    Apple has effectively abandoned HomeKit Secure Routers
    The forthcoming ".INTERNAL" TLD
    The United Nations vs AI.
    Telegram now blocked throughout Spain
    Vancouver Pwn2Own 2024
    China warns of incoming hacks
    Annual Tax Season Phishing Deluge
    SpinRite update
    Authentication without a phone
    Are Passkeys quantum safe?
    GoFetch: The Unpatchable vulnerability in Apple chips
    Show Notes - https://www.grc.com/sn/SN-967-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    zscaler.com/zerotrustAI
    bitwarden.com/twit
    canary.tools/twit - use code: TWIT
    panoptica.app
    kolide.com/securitynow

    • 2 hrs 1 min
    Morris The Second - Voyager 1, The Web Turns 35

    Morris The Second - Voyager 1, The Web Turns 35

    Voyager 1 update
    The Web turned 35 and Dad is disappointed
    Automakers sharing driving data with insurance companies
    A flaw in Passkey thinking
    Passkeys vs 2fa
    Sharing accounts with Passkeys
    Passkeys vs. Passwords/MFA
    Workaround to sites that block anonymous email addresses
    Open Bounty programs on HackerOne
    Steve on Twitter
    Ways to disclose bugs publicly
    Security by obscurity
    Something you have/know/are vs Passkeys
    Passkeys vs TOTP
    Inspecting Chrome extensions
    Passkey transportability
    Morris the Second
    Show Notes - https://www.grc.com/sn/SN-966-Notes.pdf

    Hosts: Steve Gibson and Mikah Sargent

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    zscaler.com/zerotrustAI
    robinhood.com/boost
    GO.ACILEARNING.COM/TWIT
    joindeleteme.com/twit promo code TWIT
    vanta.com/SECURITYNOW

    • 2 hrs 8 min
    Passkeys vs. 2FA - Unhelpful CERT, VMware patch, Signal 7.0 Beta

    Passkeys vs. 2FA - Unhelpful CERT, VMware patch, Signal 7.0 Beta

    VMware needs immediate patching
    Midnight Blizzard still on the offensive
    China is quietly "de-American'ing" their networks
    Signal Version 7.0, now in beta
    Meta, WhatsApp, and Messenger -meets- the EU's DMA
    The Change Healthcare cyberattack
    SpinRite update
    Telegram's end-to-end encryption
    KepassXC now supports passkeys
    Login accelerators
    Sites start rejecting @duck.com emails
    Tool to detect chrome extensions change owners
    Sortest SN title
    Passkeys vs 2FA
    Show Notes - https://www.grc.com/sn/SN-965-Notes.pdf

    Hosts: Steve Gibson and Mikah Sargent

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    vanta.com/SECURITYNOW
    joindeleteme.com/twit promo code TWIT
    kolide.com/securitynow
    business.eset.com/twit

    • 2 hrs 23 min

Customer Reviews

5.0 out of 5
3 Ratings

3 Ratings

Top Podcasts In Technology

The Art of Digitalisation
E-Estonia Briefing Centre
IT-tund
Geenius Meedia
All-In with Chamath, Jason, Sacks & Friedberg
All-In Podcast, LLC
CISSP Cyber Training Podcast - CISSP Training Program
Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur
Deep Questions with Cal Newport
Cal Newport
Люди и код
Skillbox Media Code

You Might Also Like

Windows Weekly (Audio)
TWiT
This Week in Tech (Audio)
TWiT
MacBreak Weekly (Audio)
TWiT
This Week in Google (Audio)
TWiT
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
Johannes B. Ullrich
CyberWire Daily
N2K Networks

More by TWiT TV

MacBreak Weekly (Video)
TWiT
This Week in Tech (Video)
TWiT
This Week in Google (Video)
TWiT
Security Now (Video)
TWiT
iOS Today (Audio)
TWiT
MacBreak Weekly (Audio)
TWiT