Security Now (MP3)

podcast

Subscribe
Community Share RSS

Security Now (MP3)

Por TWiT
En Security Now (MP3)
Steve Gibson, the man who coined the term spyware and created the first anti-spyware program, creator of Spinrite and ShieldsUP, discusses the hot topics in security today with Leo Laporte.

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.
SN 871: The New EU Surveillance State - Eventful Patch Tuesday, Open Source Maintenance Crew, BIG-IP Boxes TWiT
Episode
in Security Now (MP3)

SN 871: The New EU Surveillance State - Eventful Patch Tuesday, Open Source Maintenance Crew, BIG-IP Boxes

Picture of the Week. An "eventful" Patch Tuesday. Patch Tuesday. Apple patched a...

01:54:53

Internet and technology

PLAY

Add to ... 

SN 870: That "Passkeys" Thing - White House and Quantum Computers, Android 0-day, Ransomware snapshot TWiT
Episode
in Security Now (MP3)

SN 870: That "Passkeys" Thing - White House and Quantum Computers, Android 0-day, Ransomware snapshot

Picture of the Week.  Google updates Android to patch an actively exploited vulnerability....

02:04:58

Internet and technology

PLAY

Add to ... 

SN 869: Global Privacy Control - DoD DIB-VDP, OpenSSF's Package Analysis Project, Connecticut Privacy TWiT
Episode
in Security Now (MP3)

SN 869: Global Privacy Control - DoD DIB-VDP, OpenSSF's Package Analysis Project, Connecticut Privacy

Picture of the Week. DoD DIB-VDP Pilot Overview. The OpenSSF and the Package Analysis...

01:48:15

Internet and technology

PLAY

Add to ... 

REMOVE ADS
SN 868: The 0-Day Explosion - Lenovo EUFI Firmware, Everscale Blockchain Wallet, Major Java Update TWiT
Episode
in Security Now (MP3)

SN 868: The 0-Day Explosion - Lenovo EUFI Firmware, Everscale Blockchain Wallet, Major Java Update

Picture of the Week. CISA's Known Exploited Vulnerabilities Catalog. Lenovo UEFI Firmware...

01:59:28

Internet and technology

PLAY

Add to ... 

SN 867: A Critical Windows RPC RCE - Another Chrome 0-day, MS Patch-Fest, US Nuclear Systems Unhackable? TWiT
Episode
in Security Now (MP3)

SN 867: A Critical Windows RPC RCE - Another Chrome 0-day, MS Patch-Fest, US Nuclear Systems Unhackable?

Picture of the Week. Chrome's 3rd 0-day of 2022. Patch Tuesday Redux. WordPress once...

01:53:49

Internet and technology

PLAY

Add to ... 

SN 866: Spring4Shell - Patch Tuesday, Microsoft's Autopatch System, NGINX 0-Day TWiT
Episode
in Security Now (MP3)

SN 866: Spring4Shell - Patch Tuesday, Microsoft's Autopatch System, NGINX 0-Day

Picture of the Week. Could NGINX have a 0-day? Microsoft's new Autopatch system....

01:34:16

Internet and technology

PLAY

Add to ... 

SN 865: Port Knocking - Wyze Gets Spanked, FinFisher Bites the Dust, Spring4Shell, LAPSUS$ Update TWiT
Episode
in Security Now (MP3)

SN 865: Port Knocking - Wyze Gets Spanked, FinFisher Bites the Dust, Spring4Shell, LAPSUS$ Update

Picture of the Week. 0-Day Watch. Spring Forward (Java: Spring4Shell) QNAP and the...

02:01:34

Internet and technology

PLAY

Add to ... 

SN 864: Targeted Exploitation - Ukrainian ISP Challenges, Kaspersky Labs Banned in the US, Chrome 0-Day TWiT
Episode
in Security Now (MP3)

SN 864: Targeted Exploitation - Ukrainian ISP Challenges, Kaspersky Labs Banned in the US, Chrome 0-Day

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview...

01:56:57

Internet and technology

PLAY

Add to ... 

SN 863: Use After Free - OpenSSL Bug, Cybercrime Reporting Law, Node.js Supply Chain Compromise TWiT
Episode
in Security Now (MP3)

SN 863: Use After Free - OpenSSL Bug, Cybercrime Reporting Law, Node.js Supply Chain Compromise

Picture of the Week. Report Cybercrime: It's the Law. A software supply chain compromise....

01:55:13

Internet and technology

PLAY

Add to ... 

REMOVE ADS
SN 862: QWACs on? or QWACs off? - Patch Tuesday Recap, NVIDIA Hacked, EUFI Firmware Flaw, ProtonMail TWiT
Episode
in Security Now (MP3)

SN 862: QWACs on? or QWACs off? - Patch Tuesday Recap, NVIDIA Hacked, EUFI Firmware Flaw, ProtonMail

Picture of the Week. Patch Tuesday for the Industry. Android, too. Firefox emergency...

01:53:47

Internet and technology

PLAY

Add to ... 

SN 861: Rogue Nation Cyber Consequences - Russia vs. Ukraine, Crypto, StarLink, Namecheap, Telegram TWiT
Episode
in Security Now (MP3)

SN 861: Rogue Nation Cyber Consequences - Russia vs. Ukraine, Crypto, StarLink, Namecheap, Telegram

Picture of the Week. The Russians are coming. Ukrainian "Cyber Unit Technologies" is...

01:43:55

Internet and technology

PLAY

Add to ... 

SN 860: Trust Dies in Darkness - Samsung's TrustZone Keymaster Design, Daxin, Windows 11 compatibility TWiT
Episode
in Security Now (MP3)

SN 860: Trust Dies in Darkness - Samsung's TrustZone Keymaster Design, Daxin, Windows 11 compatibility

Picture of the Week.  Honor among thieves?  Daxin.  Whither or Wither: Log4j /...

02:01:55

Internet and technology

PLAY

Add to ... 

SN 859: A BGP Routing Attack - UpdraftPlus, Xenomorph, Ukranian DDoS, The Bobiverse Trilogy TWiT
Episode
in Security Now (MP3)

SN 859: A BGP Routing Attack - UpdraftPlus, Xenomorph, Ukranian DDoS, The Bobiverse Trilogy

Picture of the Week. The "UpdraftPlus" WordPress Plug-In. "Xenomorph" Decrypting "The Hive"...

01:50:24

Internet and technology

PLAY

Add to ... 

SN 858: InControl - PHP Everywhere, Magento Emergency, Project Zero Stats, Goodbye WMIC, SeriousSAM TWiT
Episode
in Security Now (MP3)

SN 858: InControl - PHP Everywhere, Magento Emergency, Project Zero Stats, Goodbye WMIC, SeriousSAM

Picture of the Week. A high-severity 0-day in Chrome. Apple updates against another 0-day....

01:47:36

Internet and technology

PLAY

Add to ... 

SN 857: The Inept Panda - China Olympics, SAMBA CVS 9.9 Vulnerability, Microsoft Office 3rd Party Macros TWiT
Episode
in Security Now (MP3)

SN 857: The Inept Panda - China Olympics, SAMBA CVS 9.9 Vulnerability, Microsoft Office 3rd Party Macros

Picture of the Week. China's Olympics: Leave your tech at home. We have a serious CVS 9.9...

02:01:17

Internet and technology

PLAY

Add to ... 

SN 856: The “Topics” API - PwnKit Tech Details, DrawnApart, Zerodium Bug Bounties, Log4Shell Hits Ubiquiti TWiT
Episode
in Security Now (MP3)

SN 856: The “Topics” API - PwnKit Tech Details, DrawnApart, Zerodium Bug Bounties, Log4Shell Hits Ubiquiti

Picture of the Week. Apple eliminates 0-days from iOS and macOS. Qualys published technical...

02:27:56

Internet and technology

PLAY

Add to ... 

SN 855: Inside the NetUSB Hack - Log4J Update, Cyber-Insurance and Ransomware, EU Bug Bounty Programs TWiT
Episode
in Security Now (MP3)

SN 855: Inside the NetUSB Hack - Log4J Update, Cyber-Insurance and Ransomware, EU Bug Bounty Programs

Picture of the Week. Log4J News. Who pays for RansomWare attack recovery? The rising cost...

01:48:39

Internet and technology

PLAY

Add to ... 

SN 854: Anatomy of a Log4j Exploit - Buggy KCode, WordPress Security TWiT
Episode
in Security Now (MP3)

SN 854: Anatomy of a Log4j Exploit - Buggy KCode, WordPress Security

Picture of the Week "Hack the Pentagon" with Log4j Open Source Software Security Summit...

01:58:22

Internet and technology

PLAY

Add to ... 

SN 853: URL Parsing Vulnerabilities - US CISA on Log4J, WordPress Security Update, What Is a Pluton TWiT
Episode
in Security Now (MP3)

SN 853: URL Parsing Vulnerabilities - US CISA on Log4J, WordPress Security Update, What Is a Pluton

Picture of the Week. The US CISA Log4J status update. The H2 Database Console vulnerability....

01:49:24

Internet and technology

PLAY

Add to ... 

SN 852: December 33rd - Log4j Update, RSA Postponed, Hack the DHS Expanded, Cyber Insurance Cost Rising TWiT
Episode
in Security Now (MP3)

SN 852: December 33rd - Log4j Update, RSA Postponed, Hack the DHS Expanded, Cyber Insurance Cost Rising

Picture of the Week. Log4j's 5th update. Microsoft's Log4j scanner triggers false positives....

01:48:34

Internet and technology

PLAY

Add to ...