Security Now

SN 814: PwnIt And OwnIt - Why Port 10080 is Blocked, FLoC Rollout, PHP GIT Hack Revisited, CISCO Router Problems

Security Now - Tue, 04/13/2021 - 8:30pm
  • Picture of the week.
  • The Slips keep Streaming.
  • Are You FLoC'ed?
  • The PHP GIT Hack, revisited.
  • CISCO abandons old routers having problems.
  • Failure to Patch.
  • PwnIt And OwnIt.

We invite you to read our show notes at https://www.grc.com/sn/SN-814-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 813: A Spy in Our Pocket - Ubiquity Coverup, Facebook Data Dump, Malicious Call of Duty Cheats

Security Now - Tue, 04/06/2021 - 8:00pm

Ubiquity coverup, Facebook data dump, malicious Call of Duty cheats.

  • The Ubiquiti Coverup.
  • Facebook's 533,313,128 Million User Whoopsie!
  • Don't mess with our water!
  • Android moves to limit inter-app visibility.
  • Beware malicious "Call of Duty: Warzone" cheats.
  • QNAP — Just Say No!
  • Listener Feedback.
  • A Spy in Our Pocket.

We invite you to read our show notes at https://www.grc.com/sn/SN-813-Notes.pdf

Hosts: Steve Gibson and Jason Howell

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 812: GIT Me Some PHP - Spectre Returns to Linux, API Security, OpenSSL Flaws, SolarWinds

Security Now - Tue, 03/30/2021 - 8:30pm

Spectre returns to Linux, API Security, OpenSSL flaws, SolarWinds.

  • Picture of the week.
  • ProxyLogon Update.
  • Spectre returns to Linux.
  • OpenSSL fixes several high-severity flaws.
  • SolarWinds keeps finding new critical problems within its own code.
  • Cloudflare's recent moves.
  • A focus on API Security.
  • SpinRite update.
  • The curious case of the PHP's Git Server Hack.

We invite you to read our show notes at https://www.grc.com/sn/SN-812-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now

SN 811: What the FLoC? - Automatic Fix for Exchange Server Flaw, Firefox 87 Features, MyBB Patch

Security Now - Tue, 03/23/2021 - 8:00pm

Automatic fix for Exchange Server flaw, Firefox 87 features, MyBB patch.

  • Dave's Garage on YouTube.
  • The latest update on the ProxyLogon fiasco is from Microsoft.
  • Black Kingdom Ransomware.
  • Firefox will be adopting a new privacy-enhancing Referrer Policy.
  • This Week in Remote Code Execution Disasters.
  • MyBB gets patched.
  • CAID is able.
  • What the FLoC? "Federated Learning of Cohorts"

We invite you to read our show notes at https://www.grc.com/sn/SN-811-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Categories: Security Now