Security Now

SN 774: 123456

Security Now - Tue, 07/07/2020 - 8:30pm

Boston bans face recognition, bad passwords.

  • Boston bans facial recognition
  • 123456 is still the most popular password
  • iOS 14 catches Linked-In, Tik Tok, and others red handed!
  • US-CERT notes two Emergency Windows Updates
  • HackerOne shares their top 10 public bug bounty programs
  • Sony launches PlayStation bug bounty program with rewards of $50K+
  • F5 Networks patches a highest-severity vulnerability

We invite you to read our show notes at https://www.grc.com/sn/SN-774-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 773: Ripple20 Too

Security Now - Tue, 06/30/2020 - 8:30pm

Congress wants to kill encryption & face recognition.

  • New information about Ripple20
  • The Facial Recognition and Biometric Technology Moratorium Act wants to kill face recognition
  • The Lawful Access to Encrypted Data Act wants to kill encryption
  • Michigan State's legislative House passed the "Microchip Protection Act"
  • Apple forces the industry down to one-year web browser certificate lifespans
  • Safari to eschew 16 new web API's for the sake of user privacy
  • Apple also got on the DoH & DoT bandwagon
  • Mozilla + Comcast + DoH: Strange Bedfellows
  • Don't forget about VirusTotal

We invite you to read our show notes at https://www.grc.com/sn/SN-773-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 772: Ripple20

Security Now - Tue, 06/23/2020 - 9:00pm

Zoom encryption, Windows 10 printer error.

  • Ripple20: a set of 19 TCP/IP vulnerabilities that could let remote attackers gain control over your device
  • Russian government lifts its failed ban on Telegram
  • Zoom: everybody gets optional end to end encryption
  • Google removed 106 malicious Chrome extensions collecting sensitive user data
  • Windows 10 update breaks printing
  • VLC Media Player 3.0.11 fixes severe remote code execution flaw
  • Netgear in the doghouse
  • DDoS is alive and well... and growing
  • How to get the new Edge for Windows 7

We invite you to read our show notes at https://www.grc.com/sn/SN-772-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 771: Lamphone

Security Now - Tue, 06/16/2020 - 8:00pm

Windows update kills printers & SSDs.

  • Lamphone: eavesdrop on a hanging lightbulb
  • Brave Browser caught and chastised for tweaking user-entered URLs for its benefit
  • Microsoft breaks its own record for Patch Tuesday patches
  • TFW Windows 10 loses your printer port
  • Last week;s Patch Tuesday broke ALL PRINTING (even to PDFs) for many users. Fix won't come for a month
  • Windows 10 2004 update is messing up SSDs and non-SSDs
  • SMBleed
  • Subject: Your Site Has Been Hacked
  • Authentic database ransom attacks
  • Another side-channel attack on Intel chips

We invite you to read our show notes at https://www.grc.com/sn/SN-771-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now