• Firefox amends their privacy policy -- the world melts down.
• Signal threatens to leave Sweden.
• Aftermath of the massive $1.5 billion Bybit ETH heist.
• It turns out that it wasn't actually Bybit's fault.
• "The Lazarus Bounty" monitoring and management site.
• Mozilla's commitment to Manifest V2 (and the uBlock Origin).
• What does the ACM's plea for memory-safe languages mean for developers?
• What exactly are memory-safe languages?
• Australia joins the Kaspersky ban.
• Gmail plans to switch from SMS to QR code authentication.
• A SpinRite success and some fun feedback.
• An astonishing new technology for targeted radio jamming

Show Notes - https://www.grc.com/sn/SN-1015-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• legatosecurity.com
• bitwarden.com/twit
• veeam.com
• threatlocker.com for Security Now

• Apple disables Advanced Data Protection for new UK users.
• Paying ransoms is not as cut and dried as we might imagine.
• Elon Musk's "X" social media blocks "Signal.me" links.
• Spain's soccer league blocks Cloudflare and causes a mess.
• Two new (and rare) vulnerabilities discovered in OpenSSH.
• The U.S. seems unable to evict Chinese attackers from its Telecom systems.
• What are those Chinese "Salt Typhoon" hackers doing to get in?
• The largest (by far) cryptocurrency heist in history occurred Friday.
• Ex-NSA head says the U.S. is falling behind on the cyber front lines.
• We have the winner (and a good one) replacement term for "backdoor".
• A look at a pathetic access control system that begs to be hacked (and will be).

Show Notes - https://www.grc.com/sn/SN-1014-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• zscaler.com/security
• joindeleteme.com/twit promo code TWIT
• uscloud.com
• canary.tools/twit - use code: TWIT

• US lawmakers respond to the UK's outrageous demand about Apple's encryption.
• What, exactly, is a "backdoor", and can a "backdoor" NOT be secret?
• Highlights from last week's Windows' Patch Tuesday.
• A look into RansomHub: The latest king of the Ransomware hill.
• "TOAD": Telephone-Oriented Attack Delivery.
• The state of Texas -versus- DeepSeek.
• Disabling Apple's "Restricted Mode".
• Where did I put that $800 million in Bitcoin?
• A Sci-Fi author update.
• And a deep dive into the misoperation of Chrome's critically important Web Extension Store

Show Notes - https://www.grc.com/sn/SN-1013-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• veeam.com
• legatosecurity.com
• threatlocker.com for Security Now
• bitwarden.com/twit
• vanta.com/SECURITYNOW

• New "SparkCat" secret-stealing AI image scanner discovered in App and Play stores.
• The UK demands that Apple does the impossible: decrypting ADP cloud data.
• France moves forward on legislation to require backdoors to encryption.
• Firefox moves to 135 with a bunch of useful new features.
• The Five Eyes alliance publishes edge-device security guidance.
• Six NetGear routers contain CVSS 9.6 and 9.8 vulnerabilities.
• Sysinternals utilities allow malicious Windows DLL injection.
• Google removes restrictive do-gooder language from AI application policies.
• "AI Fuzzing" successfully jailbreaks the most powerful ChatGPT o3 model.
• Examining the well and deliberately hidden truth behind ransomware cyberattacks on U.S. K-12 schools

Show Notes - https://www.grc.com/sn/SN-1012-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• joindeleteme.com/twit promo code TWIT
• canary.tools/twit - use code: TWIT
• zscaler.com/security
• uscloud.com
• 1password.com/securitynow

• Why was DeepSeek banned by Italian authorities?
• What internal proprietary DeepSeek data was found online?
• What is "DeepSeek" anyway? Why do we care, and what does it mean?
• Did Microsoft just make OpenAI's strong model available for free?
• Google explains how generative AI can be and is being misused.
• An actively exploited and unpatched Zyxel router vulnerability.
• The new US "ROUTERS" Act.
• Is pirate-site blocking legislation justified or is it censorship?
• Russia's blocked website count tops 400,000.
• Microsoft adds "scareware" warnings to Edge.
• Bitwarden improves account security.
• What's still my favorite disk imaging tool?
• And let's take a close look into the extraction of proscribed knowledge from today's AI

Show Notes - https://www.grc.com/sn/SN-1011-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• threatlocker.com for Security Now
• veeam.com
• bitwarden.com/twit

• eM Client CAN be purchased outright.
• An astonishing 5-year-old typo in MasterCard's DNS.
• An unwelcome surprise received by 18,459 low-level hackers.
• DDoS attacks continue growing, seemingly without any end in sight.
• Let's Encrypt clarifies their plans for 6-day "we barely knew you" certificates.
• SpinRite uncovers a bad brand new 8TB drive.
• Listener feedback about TOTP, Syncthing and UDP hole punching, email spam, ValiDrive speed, AI neural nets, DJI geofencing, and advertising in the "New" Outlook.
• A look into the tradeoffs required to obtain privacy for our DNS lookups

Show Notes - https://www.grc.com/sn/SN-1010-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• uscloud.com
• joindeleteme.com/twit promo code TWIT
• bitwarden.com/twit
• zscaler.com/security

• What do we learn from January's record breaking 0-day critical Patch Tuesday?
• Microsoft to "force-install" a new Outlook into all Windows 10 and 11 desktops?
• GoDaddy required to get much more serious about its hosting security.
• More age verification enforcement is coming, including globally.
• What another instance of a widely exposed management interface teaches us.
• DJI drone's official firmware update lifts geofencing for unrestricted flight.
• CISA's efforts pay off with MUCH improved critical infrastructure security.
• Listener feedback about TOTP, HOTP and age-verification.
• And we take a deep dive into cracking authenticator keys

Show Notes - https://www.grc.com/sn/SN-1009-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• vanta.com/SECURITYNOW
• bitwarden.com/twit
• threatlocker.com for Security Now
• veeam.com

• Meta winds down 3rd-party content filtering. Is encryption soon to follow?
• Taking over abandoned Command & Control server domains (strictly for research purposes only).
• IoT devices to get the "Cyber Trust Mark" — Will anyone notice or care?
• "SyncThing" receives a (blessedly infrequent) update.
• Government email is not using encryption? Really?
• Email relaying prevents point-to-point end-to-end encryption and authentication.
• Just because Let's Encrypt doesn't support email doesn't mean it's impossible.
• What Sci-Fi does ChatGPT think I (Steve) should start reading next?
• To auto-update or not to auto-update? — is that one question or two?
• And, until today, we've never taken a deep dive into the technology of time-varying 6-digit one time tokens.

Show Notes - https://www.grc.com/sn/SN-1008-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• canary.tools/twit - use code: TWIT
• uscloud.com
• joindeleteme.com/twit promo code TWIT
• 1password.com/securitynow
• zscaler.com/security