Security Now

SN 789: Anatomy of a Ryuk Attack - Zoom End-to-End Encryption, Windows 10 God Mode, Manifest v3

Security Now - Tue, 10/20/2020 - 8:30pm

Zoom end-to-end encryption, Windows 10 god mode, Manifest v3.

  • Last Wednesday, Zoom announced that THIS week their 30-evaluation of end-to-end encrypted video conferencing would begin
  • How to enable Windows 10 "God Mode"
  • Edge to be updated with browser extensions "Manifest v3"
  • Last Tuesday Microsoft issued fixes for 87 security vulnerabilities - so, yeah, it was a slow month...
  • Your SonicWall Network Security Appliance (NSA) MUST be patched now!
  • Microsoft's two out-of-cycle patches
  • Anatomy of a Ryuk Attack

We invite you to read our show notes at https://www.grc.com/sn/SN-789-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 788: Well Known URI's - Carnival Cruise Hack, ZeroLogon, Five Eyes vs Encryption

Security Now - Tue, 10/13/2020 - 9:00pm

Carnival Cruise hack, ZeroLogon, Five Eyes vs Encryption.

  • Chrome gets 86'd!
  • Carnival Cruise Line Hack
  • The largest company you've never heard of gets hit by ransomware hackers
  • No connection logs? In France, you go to jail!
  • Hacking the Apple
  • ZeroLogon, the FBI, DHS and our forthcoming election security
  • The revenge of DNT, as GPC, now enhanced with legislation
  • The Anti-E2EE drumbeat beats yet again

We invite you to read our show notes at https://www.grc.com/sn/SN-788-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 787: Why Win7 Lives On - Android Security, Windows 7 Security, Microsoft Defender

Security Now - Tue, 10/06/2020 - 9:00pm

Android Security, Windows 7 Security, Microsoft Defender.

  • Google to get even more proactive about Android security
  • Why are people sticking with Windows 7?
  • And Google funds a JavaScript research engine
  • Microsoft Defender gets in Vitro Updating
  • WSL 2 (Windows Subsystem for Linux v2) completely bypasses the hosting Windows 10 firewall
  • Most Microsoft Exchange Servers remain unpatched after 9 eight months!
  • Cloudflare has just added a free web API firewall service for all customers
  • US Dept of the Treasury tightens up on Ransomware payments
  • UEFI Bootkits are becoming more mainstream

We invite you to read our show notes at https://www.grc.com/sn/SN-787-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 786: ZeroLogon++ - Amazon Flying Security Cam, ZeroLogon on GitHub, Ransomware Roundup

Security Now - Tue, 09/29/2020 - 9:00pm

Amazon flying security cam, ZeroLogon on GitHub, ransomware roundup.

  • What could possibly go wrong: Amazon/Ring's autonomous flying home security webcam
  • Evil ransomware gang deposited $1 million of bitcoin in a hacker recruitment drive
  • Over this past weekend, Universal Health Services was hit by a huge Ryuk ransomware
  • One week ago, there were three ZeroLogon exploits on GitHub. Today there are more than fit on the first page of search results
  • Security Fixes in Chrome's v85.0.4183.121 Release
  • The VPN you choose DOES make a difference.
  • A "Ransomware Goldrush"

We invite you to read our show notes at https://www.grc.com/sn/SN-786-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now