104 episodes

Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protect yourself and your business. Security Now is a must listen for security professionals every week.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.

Security Now (Audio‪)‬ Security Now

    • Technology
    • 4.6 • 1.9K Ratings

Listen on Apple Podcasts
Requires subscription and macOS 11.4 or higher

Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protect yourself and your business. Security Now is a must listen for security professionals every week.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.

Listen on Apple Podcasts
Requires subscription and macOS 11.4 or higher

    Microsoft's Head in the Clouds - 4-Digit Pins, Long Range Navigation, Microsoft

    Microsoft's Head in the Clouds - 4-Digit Pins, Long Range Navigation, Microsoft

    Picture of the Week.
    Most to least common 4-digit pins.
    Enhanced LORAN.
    Passkeys.
    Microsoft's Head in the Clouds.
    Show Notes - https://www.grc.com/sn/SN-974-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    1bigthink.com
    zscaler.com/zerotrustAI
    kolide.com/securitynow
    joindeleteme.com/twit promo code TWIT

    • 1 hr 55 min
    Not So Fast - GPS Vulnerabilites, VPN Flaw

    Not So Fast - GPS Vulnerabilites, VPN Flaw

    The vulnerability of GPS
    Is the sky falling on all VPN systems?
    Multi-user Passkeys, YubiKeys?
    The iCloud Keychain
    The UK and Google's Topics
    Show Notes - https://www.grc.com/sn/SN-973-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    Melissa.com/twit
    kolide.com/securitynow
    lookout.com
    bitwarden.com/twit

    • 2 hr 24 min
    Passkeys: A Shattered Dream? - IoT Default Passwords, Passkeys

    Passkeys: A Shattered Dream? - IoT Default Passwords, Passkeys

    GCHQ: No more default passwords for consumer IoT devices!
    What happened with Chrome and 3rd-party cookies?
    Race conditions and multi-threading
    GM "accidentally" enrolled millions into "OnStar Smart Driver +" program
    Steve recommends Ryk Brown's "Frontiers Saga"
    SpinRite update
    Passkeys: A Shattered Dream?
    Show Notes - https://www.grc.com/sn/SN-972-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    business.eset.com/twit
    vanta.com/SECURITYNOW
    1bigthink.com
    lookout.com

    • 2 hr 11 min
    Chat (out of) Control - Fuxnet, Android Quarantine, Gentoo

    Chat (out of) Control - Fuxnet, Android Quarantine, Gentoo

    What do you call "Stuxnet on steroids"??
    Voyager 1 update
    Android 15 to quarantine apps
    Thunderbird & Microsoft Exchange
    China bans Western encrypted messaging apps
    Gentoo says "no" to AI
    Cars collecting diving data
    Freezing your credit
    Investopedia
    Computer Science Abstractions
    Lazy People vs. Secure Systems
    Actalis issues free S/MIME certificates
    PIN Encryption
    DRAM and GhostRace
    AT&T Phishing Scam
    Race Conditions and Multi-core processors
    An Alternative to the Current Credit System
    SpinRite Updates
    Chat (out of) Control
    Show Notes - https://www.grc.com/sn/SN-971-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    canary.tools/twit - use code: TWIT
    lookout.com
    kolide.com/securitynow
    zscaler.com/zerotrustAI

    • 2 hr 15 min
    GhostRace - AT&T Breach Update, Cookie Notices, Router Buttons

    GhostRace - AT&T Breach Update, Cookie Notices, Router Buttons

    An update on the AT&T data breach
    340,000 social security numbers leaked
    Cookie Notice Compliance
    The GDPR does enforce some transparency
    Physical router buttons
    Wifi enabled button pressers
    Netsecfish disclosure of Dlink NAS vulnerability
    Chrome bloat
    SpinRite update
    GhostRace
    Show Notes - https://www.grc.com/sn/SN-970-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    kolide.com/securitynow
    bitwarden.com/twit
    vanta.com/SECURITYNOW
    1bigthink.com

    • 1 hr 52 min
    Minimum Viable Secure Product - Dlink NAS Backdoor, Privnote, Crowdefense

    Minimum Viable Secure Product - Dlink NAS Backdoor, Privnote, Crowdefense

    Out-of-support DLink NAS devices contain hard coded backdoor credentials

    Privnote is not so "Priv"

    Crowdfense is willing to pay millions

    Engineers Pinpoint Cause of Voyager 1 Issue, Are Working on Solution

    SpinRite Update

    Minimum Viable Secure Product

    Show Notes - https://www.grc.com/sn/SN-969-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    zscaler.com/zerotrustAI
    business.eset.com/twit
    lookout.com
    joindeleteme.com/twit promo code TWIT

    • 1 hr 51 min

Customer Reviews

4.6 out of 5
1.9K Ratings

1.9K Ratings

SecEnthused ,

Best security podcast

I’m a security professional and this is the only podcast I never miss. I’ve learned a lot and I’ve been in the field 20 years.

Alex6464 ,

The last TWIT podcast I enjoy.

I used to listen to/ subscribe to 5-6 TWIT shows. I’m down to two, and MBW is on the chopping block.

But Security Now remains stellar. Steve Gibson is a treasure.

FellowGEEK ,

Glad this show exists

Security Now has been informative and fun throughout the years.

I love the Leo & Steve duo.

Keep up the good work.

Top Podcasts In Technology

Acquired
Ben Gilbert and David Rosenthal
All-In with Chamath, Jason, Sacks & Friedberg
All-In Podcast, LLC
Lex Fridman Podcast
Lex Fridman
Hard Fork
The New York Times
TED Radio Hour
NPR
Darknet Diaries
Jack Rhysider

You Might Also Like

Windows Weekly (Audio)
TWiT
This Week in Tech (Audio)
TWiT
MacBreak Weekly (Audio)
TWiT
Smashing Security
Graham Cluley & Carole Theriault
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
Johannes B. Ullrich
This Week in Google (Audio)
TWiT

More by TWiT TV

This Week in Tech (Audio)
TWiT
MacBreak Weekly (Audio)
TWiT
Ask The Tech Guys (Audio)
TWiT
Windows Weekly (Audio)
TWiT
MacBreak Weekly (Video)
TWiT
iOS Today (Audio)
TWiT