One Thousand - Windows Server 2025, Malicious Python Typos

• Bitwarden reaffirms it's commitment to open source.
• The rights of German security researchers are clarified.
• Australia to impose age limits on social media.
• Free Windows Server 2025 anyone?
• UAC wasn't getting in the way enough, so they're fixing that.
• "From Russia with fines" -- obey or else.
• South Korea fines Meta over serious user privacy violations.
• Synology's (very) critical zero-click RCE flaw.
• Malicious Python packages invoked by typos.
• Google to enforce full MFA for all cloud service users.
• Mozilla Foundation lays off 30%? Is Firefox safe?
• Some feedback from Dave's Garage (https://grc.sc/dave)
• GRC email
• CTL: AI Debugging
• CTL: Chat GPT vs YouTube Shorts
• CTL: Update on the "Train Tracks" Pic of the Week
• CTL: DNS Benchmark compatibility
• CTL: The accuracy of AI
• CTL: Exposing NAS to the Internet
• CTL: Congrats on 1000!

Show Notes - https://www.grc.com/sn/SN-1000-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• bitwarden.com/twit
• threatlocker.com for Security Now
• flashpoint.io
• lookout.com