Security Now
SN 970: GhostRace - AT&T Breach Update, Cookie Notices, Router Buttons
- An update on the AT&T data breach
- 340,000 social security numbers leaked
- Cookie Notice Compliance
- The GDPR does enforce some transparency
- Physical router buttons
- Wifi enabled button pressers
- Netsecfish disclosure of Dlink NAS vulnerability
- Chrome bloat
- SpinRite update
- GhostRace
Show Notes - https://www.grc.com/sn/SN-970-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
SN 969: Minimum Viable Secure Product - Dlink NAS Backdoor, Privnote, Crowdefense
Out-of-support DLink NAS devices contain hard coded backdoor credentials
Privnote is not so "Priv"
Crowdfense is willing to pay millions
Engineers Pinpoint Cause of Voyager 1 Issue, Are Working on Solution
SpinRite Update
Minimum Viable Secure Product
Show Notes - https://www.grc.com/sn/SN-969-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
SN 968: A Cautionary Tale - XZ Outbreak, AT&T Data Breach
- A near-Universal (Local) Linux Elevation of Privilege vulnerability
- TechCrunch informed AT&T of a 5 year old data breach
- Signal to get very useful cloud backups
- Telegram to allow restricted incoming
- HP exits Russia ahead of schedule
- Advertisers are heavier users of Ad Blockers than average Americans!
- The Google Incognito Mode Lawsuit
- Canonical fights malicious Ubuntu store apps
- Spinrite update
- A Cautionary Tale
Show Notes - https://www.grc.com/sn/SN-968-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
SN 967: GoFetch - Apple vs. DOJ, ".INTERNAL" TLD
- Apple vs U.S. DoJ
- G.M.'s Unbelievably Horrible Driver Data Sharing Ends
- Super Sushi Samurai
- Apple has effectively abandoned HomeKit Secure Routers
- The forthcoming ".INTERNAL" TLD
- The United Nations vs AI.
- Telegram now blocked throughout Spain
- Vancouver Pwn2Own 2024
- China warns of incoming hacks
- Annual Tax Season Phishing Deluge
- SpinRite update
- Authentication without a phone
- Are Passkeys quantum safe?
- GoFetch: The Unpatchable vulnerability in Apple chips
Show Notes - https://www.grc.com/sn/SN-967-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors: