SN 965: Passkeys vs. 2FA - Unhelpful CERT, VMware patch, Signal 7.0 Beta
2h 23m
·
Security Now (Audio)
·
- VMware needs immediate patching
- Midnight Blizzard still on the offensive
- China is quietly "de-American'ing" their networks
- Signal Version 7.0, now in beta
- Meta, WhatsApp, and Messenger -meets- the EU's DMA
- The Change Healthcare cyberattack
- SpinRite update
- Telegram's end-to-end encryption
- KepassXC now supports passkeys
- Login accelerators
- Sites start rejecting @duck.com emails
- Tool to detect chrome extensions change owners
- Sortest SN title
- Passkeys vs 2FA
Show Notes - https://www.grc.com/sn/SN-965-Notes.pdf
Hosts: Steve Gibson and Mikah Sargent
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
- vanta.com/SECURITYNOW
- joindeleteme.com/twit promo code TWIT
- kolide.com/securitynow
- business.eset.com/twit
The episode SN 965: Passkeys vs. 2FA - Unhelpful CERT, VMware patch, Signal 7.0 Beta from the podcast Security Now (Audio) has a duration of
2:23:27. It was first published
More episodes from Security Now (Audio)
SN 974: Microsoft's Head in the Clouds - 4-Digit Pins, Long Range Navigation, Microsoft
- Picture of the Week.
- Most to least common 4-digit pins.
- Enhanced LORAN.
- Passkeys.
- Microsoft's Head in the Clouds.
Show Notes - https://www.grc.com/sn/SN-974-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
- 1bigthink.com
- zscaler.com/zerotrustAI
- kolide.com/securitynow
- joindeleteme.com/twit promo code TWIT
SN 973: Not So Fast - GPS Vulnerabilites, VPN Flaw
- The vulnerability of GPS
- Is the sky falling on all VPN systems?
- Multi-user Passkeys, YubiKeys?
- The iCloud Keychain
- The UK and Google's Topics
Show Notes - https://www.grc.com/sn/SN-973-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
- Melissa.com/twit
- kolide.com/securitynow
- lookout.com
- bitwarden.com/twit
SN 972: Passkeys: A Shattered Dream? - IoT Default Passwords, Passkeys
- GCHQ: No more default passwords for consumer IoT devices!
- What happened with Chrome and 3rd-party cookies?
- Race conditions and multi-threading
- GM "accidentally" enrolled millions into "OnStar Smart Driver +" program
- Steve recommends Ryk Brown's "Frontiers Saga"
- SpinRite update
- Passkeys: A Shattered Dream?
Show Notes - https://www.grc.com/sn/SN-972-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
- business.eset.com/twit
- vanta.com/SECURITYNOW
- 1bigthink.com
- lookout.com
SN 971: Chat (out of) Control - Fuxnet, Android Quarantine, Gentoo
- What do you call "Stuxnet on steroids"??
- Voyager 1 update
- Android 15 to quarantine apps
- Thunderbird & Microsoft Exchange
- China bans Western encrypted messaging apps
- Gentoo says "no" to AI
- Cars collecting diving data
- Freezing your credit
- Investopedia
- Computer Science Abstractions
- Lazy People vs. Secure Systems
- Actalis issues free S/MIME certificates
- PIN Encryption
- DRAM and GhostRace
- AT&T Phishing Scam
- Race Conditions and Multi-core processors
- An Alternative to the Current Credit System
- SpinRite Updates
- Chat (out of) Control
Show Notes - https://www.grc.com/sn/SN-971-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
- canary.tools/twit - use code: TWIT
- lookout.com
- kolide.com/securitynow
- zscaler.com/zerotrustAI
SN 970: GhostRace - AT&T Breach Update, Cookie Notices, Router Buttons
- An update on the AT&T data breach
- 340,000 social security numbers leaked
- Cookie Notice Compliance
- The GDPR does enforce some transparency
- Physical router buttons
- Wifi enabled button pressers
- Netsecfish disclosure of Dlink NAS vulnerability
- Chrome bloat
- SpinRite update
- GhostRace
Show Notes - https://www.grc.com/sn/SN-970-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
- kolide.com/securitynow
- bitwarden.com/twit
- vanta.com/SECURITYNOW
- 1bigthink.com