Security Now

Congress wants to kill encryption & face recognition.

• New information about Ripple20
• The Facial Recognition and Biometric Technology Moratorium Act wants to kill face recognition
• The Lawful Access to Encrypted Data Act wants to kill encryption
• Michigan State's legislative House passed the "Microchip Protection Act"
• Apple forces the industry down to one-year web browser certificate lifespans
• Safari to eschew 16 new web API's for the sake of user privacy
• Apple also got on the DoH & DoT bandwagon
• Mozilla + Comcast + DoH: Strange Bedfellows
• Don't forget about VirusTotal

We invite you to read our show notes at https://www.grc.com/sn/SN-773-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• Melissa.com/twit
• OpenShift.com/SecurityNow
• expressvpn.com/securitynow

Zoom encryption, Windows 10 printer error.

• Ripple20: a set of 19 TCP/IP vulnerabilities that could let remote attackers gain control over your device
• Russian government lifts its failed ban on Telegram
• Zoom: everybody gets optional end to end encryption
• Google removed 106 malicious Chrome extensions collecting sensitive user data
• Windows 10 update breaks printing
• VLC Media Player 3.0.11 fixes severe remote code execution flaw
• Netgear in the doghouse
• DDoS is alive and well... and growing
• How to get the new Edge for Windows 7

We invite you to read our show notes at https://www.grc.com/sn/SN-772-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• GetRoman.com/SECURITYNOW
• extrahop.com/SECURITYNOW
• Wasabi.com offer code SECURITYNOW

Windows update kills printers & SSDs.

• Lamphone: eavesdrop on a hanging lightbulb
• Brave Browser caught and chastised for tweaking user-entered URLs for its benefit
• Microsoft breaks its own record for Patch Tuesday patches
• TFW Windows 10 loses your printer port
• Last week;s Patch Tuesday broke ALL PRINTING (even to PDFs) for many users. Fix won't come for a month
• Windows 10 2004 update is messing up SSDs and non-SSDs
• SMBleed
• Subject: Your Site Has Been Hacked
• Authentic database ransom attacks
• Another side-channel attack on Intel chips

We invite you to read our show notes at https://www.grc.com/sn/SN-771-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• canary.tools/twit - use code: TWIT
• barracuda.com/securitynow
• WWT.COM/TWIT