Security Now (Audio) TWiT TV

2021's first Patch Tuesday, Titan Security Key side-channel attack, WhatsApp.

When is Chrome not Chromium?
A major DuckDuckGo milestone.
Project Zero in the wild.
First Patch Tuesday of 2021.
ZeroLogon Drop Dead.
NSA warns against outsourcing DoH services.
A Side-Channel in Titan.
The "PayPal Football"
WhatsApp's decision to bring its data into Facebook.
We invite you to read our show notes at https://www.grc.com/sn/SN-802-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:
business.eset.com/twit
expressvpn.com/securitynow
canary.tools/twit - use code: TWIT

SolarWinds smoking gun, Signal influx of WhatsApp users, male chastity cage.

Firefox and Chromium updates address remote system take over bugs.
Tenable researchers reported a critical Chromium bug.
What Firefox's backspace key does and should do.
How Ryuk malware operations netted $150 million via cryptocurrency exchange.
Intel: A triumph of marketing over technology.
The strange case of the Male Chastity Cage.
A SolarWinds smoking gun? "Sunburst backdoor."
A class action lawsuit filed by shareholders of SolarWinds stock.
The "Krebs Stamos Group"
Zyxel security endpoints under attack.
WhatsApp revises their privacy policy.
Signal sees a mass influx of WhatsApp users.
Out with the old: A look at the history of SpinRite code.
We invite you to read our show notes at https://www.grc.com/sn/SN-801-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:
WWT.COM/TWIT
barracuda.com/securitynow

SolarWinds' Orion software, swatting goes IoT, PHP Zend Framework vulnerability.

Chrome struggles with A/V pre-scan file locking.
Zyxel security products protected by a single redundant password.
How Swatters are using IoT devices to increase the terror.
A new serious problem in the PHP Zend Framework on WordPress.
Bitcoin woes as value reaches new peaks.
ReadSpeed, SSD's, and SpinRite.
A new flaw discovered in SolarWinds' Orion software.
We invite you to read our show notes at https://www.grc.com/sn/SN-800-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsor:
itpro.tv/securitynow promo code SN30

Ransomware Task Force, Chrome 87, Firefox caches, preserving Flash video.

Chrome 87 backs away from Insecure Form Warnings.
Firefox to begin partitioning its caches.
Browsers say no to Kazakhstan again.
Announcing the RTF - The Ransomware Task Force.
5 million WordPress sites in critical danger.
Treck's TCP/IO stack strikes again!
Preserving Flash content online.
SpinRite: ReadSpeed is ready!
InitDisk is at release 5.
Numerous updates on SolarWind, Sunburst, and Supernova.
We invite you to read our show notes at https://www.grc.com/sn/SN-799-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Leo Laporte walks through some of the highlights of the show and most impactful stories of 2020. Stories include:

Clearview AI face scanning.
The "EARN IT" act.
Zoom security issues.
Why contact tracing apps won't work.
How to prevent the next Twitter hack
Ring's autonomous flying home security webcam.

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Chrome throttling ads, Google outage, 2020 Pwnie Awards, JavaScript's 25th birthday.

Chrome's heavy ad intervention.
Adrozek.
Ransomware: "Double Extortion."
A 0-click wormable vulnerability in D-Link VPN servers.
Google suffered an outage.
Amnesia:33.
Zero-day in WordPress SMTP plugin.
The 2020 Pwnie Awards.
The end of Flash.
JavaScript is celebrating its 25th birthday.
InitDisk release 4 published.
A deep look at the SolarWinds hack.
We invite you to read our show notes at https://www.grc.com/sn/SN-797-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:
barracuda.com/securitynow
WWT.COM/TWIT
canary.tools/twit - use code: TWIT