10 episodes

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of SpinRite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

Security Now (Video‪)‬ TWiT Tech Podcasts: Video

    • Technology
    • 4.8 • 141 Ratings

Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of SpinRite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.

    • video
    LastPass Again - South Dakota bans TikTok, Anker Eufy Camera debacle, Mozilla yanks trusted root

    LastPass Again - South Dakota bans TikTok, Anker Eufy Camera debacle, Mozilla yanks trusted root

    Picture of the Week.
    Don't mess with Australia.
    Facebook / Meta fined by Ireland.
    REvil's full Medibank dump.
    Is nothing sacred?
    Mozilla yanks a (no longer) trusted root.
    Android Platform Certs Escape.
    South Dakota says: No more Tik-Tok.
    Albania blames its IT staff.
    Good news on the memory safe languages front.
    Black Hat USA 2022.
    Another Chrome 0-day bites the dust.
    Anker's Eufy Camera debacle.
    An amazing-looking WiFi-6 router... $119.
    Elon really said this.
    Closing the Loop.
    SpinRite.
    LastPass Again.
     

    Show Notes https://www.grc.com/sn/SN-900-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    itpro.tv/securitynow
    canary.tools/twit - use code: TWIT
    plextrac.com/twit

    • 2 hr 3 min
    • video
    Freebie Bots & Evil Cameras - iSpoofer no more, Boa server vulnerability, CISA on Mastodon

    Freebie Bots & Evil Cameras - iSpoofer no more, Boa server vulnerability, CISA on Mastodon

    Picture of the Week.
    iSpoof you no more.
    Here come the Freebie Bots!
    Anatomy of the real-time Cryptocurrency heist.
    Lookin' for something to do?
    Boa server vulnerability.
    The dilemma of closed-source Chinese networking products.
    The Cyber Defense Index.
    Malicious Docker Hub images.
    Since we've been tracking 0-days for a while.
    CISA on Mastodon.
    Miscellany.
    Closing The Loop.
    SpinRite.


    Show Notes https://www.grc.com/sn/SN-899-Notes.pdf

     

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    kolide.com/securitynow
    plextrac.com/twit
    nordlayer.com/twit

    • 1 hr 59 min
    • video
    Wi-Peep - FBI purchased Pegasus, Passkey support directory, Quantum decryption deadline, Firefox 107

    Wi-Peep - FBI purchased Pegasus, Passkey support directory, Quantum decryption deadline, Firefox 107

    Picture of the Week.
    Firefox v107 was released last Tuesday.
    Google settles for a cool $391.5 million.
    Red Hat Signing its ZIP file Packages.
    The FBI purchased Pegasus for "research and development purposes".
    Greece bought Predator for €7 million.
    A passkeys support directory.
    Quantum decryption deadline.
    Attorneys General ask the FTC for online privacy regulation.
    Closing The Loop.
    SpinRite.
    Wi-Peep.
    Show Notes https://www.grc.com/sn/SN-898-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    tanium.com/twit
    barracuda.com/securitynow
    Secureworks.com/twit

    • 2 hr 16 min
    • video
    Memory-Safe Languages - Shennina Framework, Shufflecake, The Helm, LightSpeed vulnerabilities

    Memory-Safe Languages - Shennina Framework, Shufflecake, The Helm, LightSpeed vulnerabilities

    Picture of the Week.
    Patch Tuesday review.
    Shennina Framework - Automating Host Exploitation with AI.
    GitHub's welcome new feature.
    Three LightSpeed vulnerabilities.
    Shufflecake: Plausible deniability encrypted Linux volumes.
    Australia has decided to get proactive!
    Apple's iOS 16.1.1 everyone file sharing time-limits to 10 minutes in China.
    A couple of Decentralized Finance notes because I can't help myself.
    "The Helm" was unable to survive COVID-19.
    Elon meets Twitter.
    Closing The Loop.
    SpinRite.
    Memory-Safe Languages.
    Show Notes - https://www.grc.com/sn/SN-897-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    bitwarden.com/twit
    expressvpn.com/securitynow
    grammarly.com/tone

    • 1 hr 51 min
    • video
    Something for Everyone - Dropbox breach, cyber bank heists, Russia goes Linux, OpenSSL flaw update

    Something for Everyone - Dropbox breach, cyber bank heists, Russia goes Linux, OpenSSL flaw update

    Picture of the Week.
    A minor Dropbox breach.
    OpenSSL follow-up.
    FTC sued and settled with a repeated offender.
    $1.2 billion in reported ransomware payments during 2021.
    Akamai's Q3 Threat Report.
    Initial Access Brokerages.
    How do today's bank heists work?
    De-Fi De-struction De-jour.
    Russia moves to Linux.
    We're The Red Cross. Don't attack us, please!
    Where there's a will, there's a way.
    From China with Love.
    The UK's NCSC scan plan.
    Miscellany.
    Closing The Loop.
    SpinRite.
    We invite you to read our show notes at https://www.grc.com/sn/SN-896-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    canary.tools/twit - use code: TWIT
    drata.com/twit

    • 1 hr 55 min
    • video
    After 20 years in GCHQ - Stranger Strings, PayPal passkeys, new TCP/IP RCE in Windows

    After 20 years in GCHQ - Stranger Strings, PayPal passkeys, new TCP/IP RCE in Windows

    Picture of the Week.
    Windows driver blocklist to be updated next Tuesday.
    More Microsoft shenanigans.
    An upcoming OpenSSL CRITICAL vulnerability update -- get ready!
    A new TCP/IP RCE in Windows.
    A study of malicious CVE proof of concept exploits in GitHub.
    "Stranger Strings" : An exploitable flaw in SQLite.
    PayPal to add support for Passkeys.
    A browser exploitation tutorial!
    Kathleen Booth: July 9th, 1922 – September 29, 2022.
    Closing The Loop.
    SpinRite.
    After 20 years in GCHQ.
    We invite you to read our show notes at https://www.grc.com/sn/SN-895-Notes.pdf

    Hosts: Steve Gibson and Leo Laporte

    Download or subscribe to this show at https://twit.tv/shows/security-now.

    Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

    You can submit a question to Security Now! at the GRC Feedback Page.

    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

    Sponsors:
    nordlayer.com/twit
    kolide.com/securitynow
    itpro.tv/securitynow

    • 2 hr 2 min

Customer Reviews

4.8 out of 5
141 Ratings

141 Ratings

PenguinFred ,

The best security podcast out there!

Steve and Leo have been doing this weekly podcast for many years, and it continues to be a must-listen podcast for anyone interested in protecting their computer(s) and their company.

Deep dives into the latest vulnerabilities, plus explanations of how security works and best practices!

Edr196 ,

Great information

Please give us more propaganda on why it’s not worth trying to restore freedom of speech.

SouthFresh ,

Hard to trust when selling Kape Tech VPN

Security Now should know better than to promote a VPN service from known malicious actors.

Top Podcasts In Technology

Lex Fridman
Jason Calacanis
The New York Times
Ben Gilbert and David Rosenthal
NPR
Jack Rhysider

You Might Also Like

TWiT
TWiT
TWiT
TWiT
TWiT
TWiT

More by TWiT TV

TWiT
TWiT
TWiT
TWiT
TWiT
TWiT