10 episodes

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of SpinRite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

Security Now (Video‪)‬ TWiT Tech Podcasts: Video

    • Technology
    • 4.8 • 140 Ratings

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of SpinRite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

    • video
    Wi-Peep - FBI purchased Pegasus, Passkey support directory, Quantum decryption deadline, Firefox 107

    Wi-Peep - FBI purchased Pegasus, Passkey support directory, Quantum decryption deadline, Firefox 107

    Picture of the Week.
    Firefox v107 was released last Tuesday.
    Google settles for a cool $391.5 million.
    Red Hat Signing its ZIP file Packages.
    The FBI purchased Pegasus for "research and development purposes".
    Greece bought Predator for €7 million.
    A passkeys support directory.
    Quantum decryption deadline.
    Attorneys General ask the FTC for online privacy regulation.
    Closing The Loop.
    SpinRite.
    Wi-Peep.
    Show Notes https://www.grc.com/sn/SN-898-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    tanium.com/twit
    barracuda.com/securitynow
    Secureworks.com/twit

    • 2 hr 16 min
    • video
    Memory-Safe Languages - Shennina Framework, Shufflecake, The Helm, LightSpeed vulnerabilities

    Memory-Safe Languages - Shennina Framework, Shufflecake, The Helm, LightSpeed vulnerabilities

    Picture of the Week.
    Patch Tuesday review.
    Shennina Framework - Automating Host Exploitation with AI.
    GitHub's welcome new feature.
    Three LightSpeed vulnerabilities.
    Shufflecake: Plausible deniability encrypted Linux volumes.
    Australia has decided to get proactive!
    Apple's iOS 16.1.1 everyone file sharing time-limits to 10 minutes in China.
    A couple of Decentralized Finance notes because I can't help myself.
    "The Helm" was unable to survive COVID-19.
    Elon meets Twitter.
    Closing The Loop.
    SpinRite.
    Memory-Safe Languages.
    Show Notes - https://www.grc.com/sn/SN-897-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    bitwarden.com/twit
    expressvpn.com/securitynow
    grammarly.com/tone

    • 1 hr 51 min
    • video
    Something for Everyone - Dropbox breach, cyber bank heists, Russia goes Linux, OpenSSL flaw update

    Something for Everyone - Dropbox breach, cyber bank heists, Russia goes Linux, OpenSSL flaw update

    Picture of the Week.
    A minor Dropbox breach.
    OpenSSL follow-up.
    FTC sued and settled with a repeated offender.
    $1.2 billion in reported ransomware payments during 2021.
    Akamai's Q3 Threat Report.
    Initial Access Brokerages.
    How do today's bank heists work?
    De-Fi De-struction De-jour.
    Russia moves to Linux.
    We're The Red Cross. Don't attack us, please!
    Where there's a will, there's a way.
    From China with Love.
    The UK's NCSC scan plan.
    Miscellany.
    Closing The Loop.
    SpinRite.
    We invite you to read our show notes at https://www.grc.com/sn/SN-896-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    canary.tools/twit - use code: TWIT
    drata.com/twit

    • 1 hr 55 min
    • video
    After 20 years in GCHQ - Stranger Strings, PayPal passkeys, new TCP/IP RCE in Windows

    After 20 years in GCHQ - Stranger Strings, PayPal passkeys, new TCP/IP RCE in Windows

    Picture of the Week.
    Windows driver blocklist to be updated next Tuesday.
    More Microsoft shenanigans.
    An upcoming OpenSSL CRITICAL vulnerability update -- get ready!
    A new TCP/IP RCE in Windows.
    A study of malicious CVE proof of concept exploits in GitHub.
    "Stranger Strings" : An exploitable flaw in SQLite.
    PayPal to add support for Passkeys.
    A browser exploitation tutorial!
    Kathleen Booth: July 9th, 1922 – September 29, 2022.
    Closing The Loop.
    SpinRite.
    After 20 years in GCHQ.
    We invite you to read our show notes at https://www.grc.com/sn/SN-895-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    nordlayer.com/twit
    kolide.com/securitynow
    itpro.tv/securitynow

    • 2 hr 2 min
    • video
    Data Breach Responsibility - Firefox 106, KataOS and Sparrow, banking malware, CVSS 9.8 update

    Data Breach Responsibility - Firefox 106, KataOS and Sparrow, banking malware, CVSS 9.8 update

    Picture of the Week.
    Firefox 106 is out.
    Google's Open Source IoT KataOS and Sparrow.
    This Week in CryptoCurrency Craziness.
    New Windows 0-day bypasses executable security checks.
    Apple's 9th 0-day of the year bites the dust.
    The evolutionary demise of banking malware.
    VMWare's Critical CVSS 9.8 Update.
    Closing The Loop.
    Miscellany.
    Data Breach Responsibility.
    We invite you to read our show notes at https://www.grc.com/sn/SN-894-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    drata.com/twit
    Secureworks.com/twit
    barracuda.com/securitynow

    • 1 hr 58 min
    • video
    Password Change Automation - Windows Update RSS, malicious kernal drivers, Signal SMS/MMS, ZimaBoard

    Password Change Automation - Windows Update RSS, malicious kernal drivers, Signal SMS/MMS, ZimaBoard

    Picture of the Week.
    Microsoft "Won't Fix".
    Malicious Kernel Drivers.
    Microsoft has finally added an RSS feed for Windows Updates!
    Passkeys [dot] Dev.
    Largest DDoS attack.
    Signal will be dropping its SMS/MMS support.
    Brute-force protection for Windows local admin accounts.
    Other than that...
    SpinRite.
    Closing The Loop.
    xchg rax, rax and "xorpd"
    ZimaBoard Goodness.
    Password Change Automation.
    We invite you to read our show notes at https://www.grc.com/sn/SN-893-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    wwt.com/twit
    canary.tools/twit - use code: TWIT
    expressvpn.com/securitynow

    • 2 hr 1 min

Customer Reviews

4.8 out of 5
140 Ratings

140 Ratings

PenguinFred ,

The best security podcast out there!

Steve and Leo have been doing this weekly podcast for many years, and it continues to be a must-listen podcast for anyone interested in protecting their computer(s) and their company.

Deep dives into the latest vulnerabilities, plus explanations of how security works and best practices!

SouthFresh ,

Hard to trust when selling Kape Tech VPN

Security Now should know better than to promote a VPN service from known malicious actors.

--** ,

Excellent and detailed reporting

Often I’m not sure of subject, but Leo & Steve make a great attempt to explain the weeks webcast!

If you wanna know something about a security issue that is relevant, start here 👈

Top Podcasts In Technology

Lex Fridman
Jason Calacanis
NPR
Chris Tarbell & Hector Monsegur
The New York Times
Cal Newport

You Might Also Like

TWiT
TWiT
TWiT
TWiT
TWiT
TWiT

More by TWiT TV

TWiT
TWiT
TWiT
TWiT
TWiT
TWiT