Security Now

2021's first Patch Tuesday, Titan Security Key side-channel attack, WhatsApp.

• When is Chrome not Chromium?
• A major DuckDuckGo milestone.
• Project Zero in the wild.
• First Patch Tuesday of 2021.
• ZeroLogon Drop Dead.
• NSA warns against outsourcing DoH services.
• A Side-Channel in Titan.
• The "PayPal Football"
• WhatsApp's decision to bring its data into Facebook.

We invite you to read our show notes at https://www.grc.com/sn/SN-802-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• business.eset.com/twit
• expressvpn.com/securitynow
• canary.tools/twit - use code: TWIT

SolarWinds smoking gun, Signal influx of WhatsApp users, male chastity cage.

• Firefox and Chromium updates address remote system take over bugs.
• Tenable researchers reported a critical Chromium bug.
• What Firefox's backspace key does and should do.
• How Ryuk malware operations netted $150 million via cryptocurrency exchange.
• Intel: A triumph of marketing over technology.
• The strange case of the Male Chastity Cage.
• A SolarWinds smoking gun? "Sunburst backdoor."
• A class action lawsuit filed by shareholders of SolarWinds stock.
• The "Krebs Stamos Group"
• Zyxel security endpoints under attack.
• WhatsApp revises their privacy policy.
• Signal sees a mass influx of WhatsApp users.
• Out with the old: A look at the history of SpinRite code.

We invite you to read our show notes at https://www.grc.com/sn/SN-801-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• WWT.COM/TWIT
• barracuda.com/securitynow

SolarWinds' Orion software, swatting goes IoT, PHP Zend Framework vulnerability.

• Chrome struggles with A/V pre-scan file locking.
• Zyxel security products protected by a single redundant password.
• How Swatters are using IoT devices to increase the terror.
• A new serious problem in the PHP Zend Framework on WordPress.
• Bitcoin woes as value reaches new peaks.
• ReadSpeed, SSD's, and SpinRite.
• A new flaw discovered in SolarWinds' Orion software.

We invite you to read our show notes at https://www.grc.com/sn/SN-800-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsor:

• itpro.tv/securitynow promo code SN30

Ransomware Task Force, Chrome 87, Firefox caches, preserving Flash video.

• Chrome 87 backs away from Insecure Form Warnings.
• Firefox to begin partitioning its caches.
• Browsers say no to Kazakhstan again.
• Announcing the RTF - The Ransomware Task Force.
• 5 million WordPress sites in critical danger.
• Treck's TCP/IO stack strikes again!
• Preserving Flash content online.
• SpinRite: ReadSpeed is ready!
• InitDisk is at release 5.
• Numerous updates on SolarWind, Sunburst, and Supernova.

We invite you to read our show notes at https://www.grc.com/sn/SN-799-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.