Security Now

SN 723: Encrypting DNS

Security Now - Tue, 07/16/2019 - 11:06pm
  • Bullet points from last Tuesday's monthly Windows patches as well
  • Notes from the end of Windows 7
  • Laporte County Under Ransomware Attack
  • The mixed blessing of fining companies for self-reporting
  • A survey of enterprise malware headaches
  • Some Mozilla/ Firefox news
  • Another (kinda obvious) way of exfiltrating information from a PC
  • DNS Encryption

We invite you to read our show notes at https://www.grc.com/sn/SN-723-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 722: Gem Hack & Ghost Protocol

Security Now - Tue, 07/09/2019 - 10:51pm

This Week's Stories
• Mozilla's privacy-enhancing DNS over HTTPS support
• Facial recognition and automobile license plate scanners
• The future of satellite-based Internet services
• How a Ruby code repository was hacked
• The UK GCHQ's proposal for adding "ghost" participants into private conversations

We invite you to read our show notes at https://www.grc.com/sn/SN-722-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 721: Exposed Cloud Databases

Security Now - Tue, 07/02/2019 - 10:00pm

• Ransomware in Florida and elsewhere
• The "Going Dark" anti-encryption debate
• A BlueKeep Proof of Concept demo produced by the guys at SophosLabs
• Massive publicly-exposed databases
• Chinese IoT manufacturer logs a million+ customer devices into a 2+ billion record publicly-exposed database,
• The dilemma we have with the utter lack of oversight and control over our own IoT devices

We invite you to read our show notes at https://www.grc.com/sn/SN-721-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 720: Bug Bounty Business

Security Now - Wed, 06/26/2019 - 12:35am

• Update on the Linux TCP SACK Kernel panic
• Hackers exploit a Firefox flaw and attack Coinbase
• Google corrects a flaw with Nestcam
• An elegant solution to OpenSSH key theft via Rowhammer attacks
• Update on the BlueKeep RDP vulnerability
• Verizon's negligence caused a major Cloudflare and Amazon customer outage
• NASA was infected by an APT for more than a year
• Should you pay ransomware?
• Microsoft's Chromium-based Edge browser Update
• The state of the commercial Bug Bounty Business

We invite you to read our show notes at https://www.grc.com/sn/SN-720-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now