10 episodes

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

Security Now (MP3) TWiT TV

    • Tech News

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

    SN 754: The Internet of Troubles

    SN 754: The Internet of Troubles

    TWiT Audience Survey- ENDS FEBRUARY 19TH!!!
    It's time for TWiT's annual audience survey and we want to hear from you! It only takes five minutes.Please visit twit.tv/survey and let us know what you think.There's no sign-up form and we don't track you. Your feedback helps us make TWiT even better."
    This Week's Stories
    How to fix the Windows 7 "You don't have permission to shut down this computer." errorWin10's "One Button PC Reset" fails after KB4524244.And, also... "The new disappearing User Profile problem" (Desktop and all user data) The popular "GDPR Cookie Consent" Wordpress plugin had a critical flawWhoa! The average tenure of a CISO is just 26 months due to high stress and burnoutMicrosoft's "ElectionGuard" being used for the first time today!IoT lightbulb vulnerabilities are not such a joke, after all.SweynTooth Vulnerabilities: a set of more than 12 newly discovered vulnerabilities across a wide range of Bluetooth devices, many of which will never be updated, which allow for, among other things, full device compromise.We invite you to read our show notes at https://www.grc.com/sn/SN-754-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    WWT.COM/TWIT
    FreshBooks.com/securitynow
    canary.tools/twit - use code: TWIT

    • 1 hr 43 min
    SN 753: Promiscuous Cookies

    SN 753: Promiscuous Cookies

    Twitter, Google, and Facebook tell Clearview AI to stop stealing your face to catch crooks The NIST is testing methods to recover data from smashed smartphones Whoa! We get to REMAIN with Security Essentials under Windows 7! Microsoft drops a fix for the wallpaper stretch black screen Windows 7 users are being told: "You don't have permission to shut down this computer." Win10 Firefox users being "reminded" about Edge Last week Google closed an Android RCE flaw in the BlueTooth daemon. Data Exfiltration Technique of the Week CIA Uses Crypto AG to spy on the world Chrome 80 appeared last week with its implementation of the updated handling of the optional "SameSite" enforcement cookie propertyWe invite you to read our show notes at https://www.grc.com/sn/SN-753-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    plextrac.com/twit
    itpro.tv/securitynow promo code SN30
    Melissa.com/twit

    • 1 hr 56 min
    SN 752: The Little Red Wagon

    SN 752: The Little Red Wagon

    This Week's Stories:
    - L1D Eviction Sampling becomes "CacheOut"- Only one final version of Windows?- Windows 7 and the Free Software Foundation- Windows 7's final patch broke wallpaper stretching- RCE Exploit for Windows RDP Gateway Demoed by Researcher- Google more than doubles its own bug bounty record- The return of Roskomnadzor!- Facebook DID get fined, but not by Russia- who exactly owns our biometric data?- Avast Jumpshot missed the hoop- An Update on the WireGuard VPN in the Linux kernel- In this week's Best Hack of the New Decade... a little red wagon
    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    expressvpn.com/securitynow
    WWT.COM/TWIT
    LastPass.com/twit

    • 2 hr
    SN 751: SHAmbles

    SN 751: SHAmbles

    This Week's Stories:
    Is Apple actually encrypting our iCloud storage backups?250 Million Microsoft Customer Support Records Exposed OnlineNew York state is aiming to ban the use of public funds for RansomwareNew Muhstik Botnet Attacks Target Tomato RoutersChrome under attack from browser extensionsFirefox under attack from browser extensionsNIST publishes a new Privacy FrameworkHacker Leaks More Than 500K Telnet Credentials for IoT DevicesA Welcome "Micro Patch" for the Windows IE jscript.dll 0-day vulnerabilitySHA-1 is a Shambles.
    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsor:
    privacy.com/securitynow

    • 1 hr 53 min
    SN 750: The Crypto CurveBall

    SN 750: The Crypto CurveBall

    This Week's Stories:
    iPhones join Android in being a Google account security key.How much "substantive assistance" did Apple provide in the Pensacola investigation?A brand new serious Internet Explorer 0-dayGiving Windows an additional EdgeFBI says nation-state actors breached a US city government and a US financial entity by exploiting Pulse Secure VPN servers.Critical new Windows Remote Desktop Gateway (RD Gateway) remote code execution vulnerabilitySQRL for DrupalMicrosoft issues security update to fix "CurveBall" vulnerability
    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    WWT.COM/TWIT
    Melissa.com/twit
    Wasabi.com offer code SecurityNow

    • 1 hr 45 min
    SN 749: Windows 7 - R. I. P.

    SN 749: Windows 7 - R. I. P.

    This Week's Stories:
    Windows 7 support dies today, but 1 in 7 PCs are still running itCablehaunt- the remote exploit with the catchy logo that works on ALL cable modemsUS government still wants backdoor access to iPhonesCheckRain iPhone jailbreak keeps getting betterHow Apple scans your photos for evidence of child abuseThe sim swapping threatAnatomy/timeline of the exploitation of an unpatched VPN bugAnd speaking of patching right away... patch your Firefox browser right now!
    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    FreshBooks.com/securitynow
    canary.tools/twit - use code: TWIT
    expressvpn.com/securitynow

    • 2 hr 11 min

Customer Reviews

Storiwr ,

A Must-Listen for aspiring Security Professionals

If you’re a security professional, thinking of becoming one, or just want to remain safer in an increasingly connected world, this podcast is practically a graduate course delivered once a week at no cost to you. Steve Gibson knows computer infrastructure on a fundamental level akin to a native speaker of a language.

As a long-time assembly programmer, Steve’s mind naturally breaks down concepts into its fundamental components, allowing even security novices to follow along (though occasionally it might take a couple listens).

A note to new listeners: the episodes really must be listened to sped up. I’m not sure if Apple’s improved their speed settings, but other apps like Pocketcast and Overcast have features that naturally remove pauses and dead space as well as dynamically speeding up speech. This is necessary because not only are the episodes quite long, but Steve is a very deliberate speaker and is not reading from a script.

This is not meant to be a criticism. He’s a programmer and security researcher. He does not have the decades of radio training his cohost Leo Laporte benefits from. I only mention this because it’s something I hear frequently from people just starting to listen. I find 1.3x is a perfect balance.

Security Now! Is one of the first podcasts I started listening to and it’s given me a framework to discuss just about any technology story in the news, or concept a work. I really can’t recommend it enough. The archive has many classics explaining how the internet works, how computers work, how ecliptic curve encryption works. Seriously, just listen and learn!

Techgeek2k ,

This guy is extremely annoying

zero one star
Leo L needs replacing this this guy and leo wife needs replacing this extremely annoying guy maybe i return untill they get rid of this guy I refused listern to any of leo podcasts or this week in amateur radio with wb2xbs parts of leo
I stop listening to leo shows 4 yrs now because of this annoying guy

JohnTheos ,

Getting to be unlistenable

When I listen to podcasts, I’m looking for the hosts to understand the material and provide me with their opinions on the matter. Unfortunately Steve has decided that that’s too much effort and now spends his time just reading others reports or press releases to the audience.

EDIT: someone suggested playing this episode at 1.5x. OMG does it make it so much better.

Top Podcasts In Tech News

Listeners Also Subscribed To

More by TWiT TV