Security Now!

SN 692: GPU RAM Image Leakage

Dodany: 5 grudnia 2018

Another Lenovo SuperFish-style local security certificate screw upThe Marriott breach and several other new, large and high-profile secure breach incidentsThe inevitable evolution of exploitation...

SN 691: ECCploit

Dodany: 28 listopada 2018

Yesterday, the US Supreme Court heard Apple's argument about why a class action lawsuit against their monopoly App Store should not be allowed to proceed. How could this affect iOS security?Google...

SN 690: Are Passwords Immortal?

Dodany: 21 listopada 2018

All the action at last week's Pwn2Own Mobile hacking contestThe final word on processor mis-design in the Meltdown/Spectre eraA workable solution for unsupported Intel firmware upgrades for hostile...

SN 689: Self-Decrypting Drives

Dodany: 14 listopada 2018

Last month's Patch Tuesday, this monthA GDPR-inspired lawsuit filed by Privacy InternationalCheck these two router ports to protect against a new botnet that's making the roundsAnother...

SN 688: PortSmash

Dodany: 7 listopada 2018

A close look at the impact and implication of the new "PortSmash" attack against Intel (and almost certainly other) processors. The new "BleedingBit" Bluetooth flaws JavaScript is no longer...

SN 687: Securing the Vending Machine

Dodany: 31 października 2018

More Zero-day exploits in Windows 10, publicly exposed Docker Engine APIs, Google's plan to fix Android, the DoD is expanding its existing "Hack the Pentagon" bug-bounty program to include hardware...

SN 686: Libssh's Big Whoopsie!

Dodany: 24 października 2018

This week a widely used embedded OS (FreeRTOS) is in the doghouse, as are at least eight D-Link routers which have serious problems most of which D-Link has stated will never be patched. We look at...

SN 685: Good Samaritans?

Dodany: 17 października 2018

This week we observe the untimely death of Microsoft's co-founder Paul Allen, revisit the controversial Bloomberg China supply chain hacking report, catch up on Microsoft's October patching fiasco,...

SN 684: The Supply Chain

Dodany: 10 października 2018

An October Surprise of a different sort - Windows 10 update deletes users' filesA security researcher has massively weaponzied the existing MicroTik vulnerability and released it as a...

SN 683: The Facebook Breach

Dodany: 3 października 2018

This week we discuss yet another treat from Cloudflare, the growing legislative battle over Net Neutrality, the rise of Python malware, Cisco's update report on the VPNFilter malware, still more...

SN 682: SNI Encryption

Dodany: 26 września 2018

This week we look at additional changes coming from Google's Chromium team, another powerful instance of newer cross-platform malware, the publication of a 0-day exploit after Microsoft missed its...

SN 681: The Browser Extension Ecosystem

Dodany: 19 września 2018

This week we prepare for the first ever Presidential Alert unblockable nationwide text message, we examine Chrome's temporary "www" removal reversal, checkout Comodo's somewhat unsavory marketing,...

SN 680: Exploits & Updates

Dodany: 12 września 2018

This week we discuss Windows 7's additional three years of support life, MicroTik routers back in the news (and not in a good way), Google Chrome 69's new features, the hack of MEGA's cloud storage...

SN 679: SonarSnoop

Dodany: 5 września 2018

This week we cover the expected exploitation of the most recent Apache STRUTS vulnerability, a temporary interim patch for the Windows 0-day privilege elevation, an information disclosure...

SN 678: Never a Dull Moment

Dodany: 29 sierpnia 2018

This week we catch-up with another busy week. We look at Firefox's changing certificate policies, the danger of grabbing a second-hand domain, the Fortnite mess on Android, another patch-it-now...

SN 677: The Foreshadow Flaw

Dodany: 22 sierpnia 2018

As we head into our 14th year of Security Now​, this week we look at some of the research released during last week's USENIX Security symposium, we also take a peek at last week's Patch Tuesday...

SN 676: The Mega FaxSploit

Dodany: 15 sierpnia 2018

This week we cover lots of discoveries revealed during last week's Black Hat 2018 and DEF CON 26 Las Vegas security conferences. Among them, 47 vulnerabilities across 25 Android smartphones,...

SN 675: New WiFi Password Attack

Dodany: 8 sierpnia 2018

This week we discuss yet another new and diabolical router hack and attack, Reddit's discovery of SMS 2FA failure, WannaCry refuses to die, law enforcement's ample unused forensic resources, a new...

SN 674: Attacking Bluetooth Pairing

Dodany: 1 sierpnia 2018

This week we examine still another new Spectre processor speculation attack, we look at the new "Death Botnet", the security of the US DoD websites, lots of Google Chrome news, a push by the US...

SN 673: The Data Transfer Project

Dodany: 25 lipca 2018

This week as we examine still another new Spectre processor speculation attack, some news on DRAM hammering attacks and mitigation, the consequences of freely available malware source code, the...