10 episodes

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

Security Now (Audio‪)‬ TWiT TV

    • Tech News
    • 4.6 • 1.6K Ratings

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

    Dependency Confusion - SHAREit's Security Update, Solorigate, Brave's "Private Window With Tor"

    Dependency Confusion - SHAREit's Security Update, Solorigate, Brave's "Private Window With Tor"

    SHAREit's security update, Solorigate, Brave's "Private Window with Tor".

    SHAREit Follow-up
    This Week in Web Browser Tracking
    Brave's "Private Window with Tor" was not so private
    Tracking with eMail Beacons
    Microsoft's final "Solorigate" update
    "Good App goes Bad for Profit"
    SpinRite: RS shows VERY obvious improvement after one pass of SR 6
    Dependency Confusion
    We invite you to read our show notes at https://www.grc.com/sn/SN-807-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    Melissa.com/twit
    barracuda.com/securitynow
    expressvpn.com/securitynow

    • 2 hr 2 min
    C.O.M.B. - Florida Water Supply Hack Update, Major Patch Tuesday, Android SHAREit Vulnerability

    C.O.M.B. - Florida Water Supply Hack Update, Major Patch Tuesday, Android SHAREit Vulnerability

    Florida water supply hack update, Major patch Tuesday, Android SHAREit vulnerability.

    Pic of the week.
    New info in the Oldsmar, Florida water supply attack.
    Major Patch Tuesday update.
    Adobe released critical updates to three versions each of its Acrobat and Reader.
    Android SHAREit.
    The Rise of The Web Shells.
    This week's WordPress Mess: Responsive Menu plugin.
    SpinRite drive discovery video.
    What is C.O.M.B.?
    We invite you to read our show notes at https://www.grc.com/sn/SN-806-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    canary.tools/twit - use code: TWIT
    business.eset.com/twit

    • 2 hr 1 min
    SCADA Scandal - Defender Thinks Chrome is Malware, Plex Media Servers in DDoS Attacks

    SCADA Scandal - Defender Thinks Chrome is Malware, Plex Media Servers in DDoS Attacks

    Defender thinks Chrome is malware, Plex Media Servers in DDoS attacks.

    Picture of the Week.
    Google has been busy with Chrome.
    Google Chrome Heap Buffer Overflow Vulnerability Exploited.
    A unique use of Chrome's "sync" feature for command & control and data exfiltration.
    Defender thinks Chrome is Malware.
    More Critical WordPress Plug-in Problems.
    Plex Media servers SSDP protocol being used in DDoS attacks.
    Three more NEW vulnerabilities discovered in SolarWinds' software.
    Closing the Loop.
    SpinRite: "Discovering System's Mass Storage Devices..."
    SCADA Scandal: Hacker's attempts to adjust chemicals in Oldsmar water supply.
    We invite you to read our show notes at https://www.grc.com/sn/SN-805-Notes.pdf



    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    udacity.com/twit coupon code TWiT
    Gabi.com/SECURITYNOW
    WWT.COM/TWIT

    • 2 hr 23 min
    NAT Slipstreaming 2.0 - SUDO Was Pseudo Secure, BigNox Supply-Chain Attack, iMessage in a Sandbox

    NAT Slipstreaming 2.0 - SUDO Was Pseudo Secure, BigNox Supply-Chain Attack, iMessage in a Sandbox

    SUDO was pseudo secure, BigNox supply-chain attack, iMessage in a sandbox.

    Picture of the Week.
    Chrome rescinding another CA's root cert.
    An urgent update to the recently released GnuPG.
    An interesting supply-chain attack "BigNox".
    Apple quietly put iMessage in a sandbox in iOS 14.
    For the past 10 years, "SUDO" was only pseudo secure.
    SpinRite: February 1st Progress Report.
    NAT Slipstreaming 2.0.
    We invite you to read our show notes at https://www.grc.com/sn/SN-804-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    barracuda.com/securitynow
    itpro.tv/securitynow promo code SN30
    extrahop.com/SECURITYNOW

    • 2 hr 11 min
    Comparative Smartphone Security - Browser Password Managers, Adobe Flash Repercussions, SolarWinds

    Comparative Smartphone Security - Browser Password Managers, Adobe Flash Repercussions, SolarWinds

    Browser password managers, Adobe Flash repercussions, SolarWinds.

    Chrome and Edge have beefed-up their built-in password managers.
    The random repercussions associated with the end of Adobe Flash.
    A new trend emerging with post-ransomware DDOS attacks.
    SolarWinds attack details continue to emerge.
    Malwarebytes was also attacked.
    It seems that wherever we look, we find problems.
    The Expanse is GOOD sci-fi.
    Comparative Smartphone Security: Which mobile OS is better?
    We invite you to read our show notes at https://www.grc.com/sn/SN-803-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    udacity.com/twit coupon code TWiT
    privacy.com/securitynow

    • 2 hr 11 min
    Where the Plaintext Is - 2021's First Patch Tuesday, Titan Security Key Side-Channel Attack, WhatsApp

    Where the Plaintext Is - 2021's First Patch Tuesday, Titan Security Key Side-Channel Attack, WhatsApp

    2021's first Patch Tuesday, Titan Security Key side-channel attack, WhatsApp.

    When is Chrome not Chromium?
    A major DuckDuckGo milestone.
    Project Zero in the wild.
    First Patch Tuesday of 2021.
    ZeroLogon Drop Dead.
    NSA warns against outsourcing DoH services.
    A Side-Channel in Titan.
    The "PayPal Football"
    WhatsApp's decision to bring its data into Facebook.
    We invite you to read our show notes at https://www.grc.com/sn/SN-802-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    business.eset.com/twit
    expressvpn.com/securitynow
    canary.tools/twit - use code: TWIT

    • 1 hr 45 min

Customer Reviews

4.6 out of 5
1.6K Ratings

1.6K Ratings

Another_soldier ,

Security Now

I have been listening to this program or watching it as either an audio podcast or a video one.

This show has been going on since 2005. There have indeed been 806 episodes up to this week. This is Friday, the 19th of February, 2021.

Steve Gibson and Leo Leporte work well together. There have been so many great security notifications and explanations of attacks and bugs and CVE’s and all of it.

There have been many great products I have been introduced to. A long time ago there was a firewall called Astaro. Steve and Leo point out great products that are either advertisers on the show or that are products they have and personally do use.

I bought myself a new firewall for home, pFsense/netgate. I also purchased the best disk tool ever created in my mind, SpinRite v 6.0. If you never have listened to someone that has so many of the inside stories and the real answers to burning questions, then you are really missing something. This one of the best Podcasts that I have ever and probably will ever listen to.

I get my security news and happenings about vulnerabilities in everything imaginable.

I am a UNIX/Linux Engineer. I have been working with UNIX since 1982. I have been involved with security since the beginning.

I was in Cupertino California in 2005, working at Sun Microsystems and I heard the first episode of security now, Aug 19, 2005, “As the Worm Turns - the first Internet Worms of 2005”.

So if you have never listened to this Podcast, you need to get on it. You can go back to the first episode by going to the Gibson Research Corporation, grc.com.

Thank you Steve and Leo. Thank you Apple for letting them be on your service as a Podcast. Thank you to all the people that makes this podcast possible. I have learned so many things since 2005.

Sincerely

Bill Branson

ptcgkm ,

Very informative podcast

I have listened to all the shows. I have learned a lot from Steve and this show. I use this show and TWiT to find out all my tech news for the past week.

Pathoftruth ,

Security Now!!!

Security Now is a must subscribe for anyone in CyberSecurity. Steve Gibson is extremely knowledgeable and goes through security topics in depth. The format of the show goes over the weekly news followed by a deep dive into an exploit or topic. Steve, Leo, Lisa, and the TWIT network: you MUST continue past 1000 episodes!!!

Top Podcasts In Tech News

Listeners Also Subscribed To

More by TWiT TV