Security Now!

SN 663: Ultra-Clever Attacks

Dodany: 16 maja 2018


This week we will examine two incredibly clever, new (and bad) attacks named eFail and Throwhammer. But first we catchup on the rest of the past week's security and privacy news, including the...

SN 662: Spectre - NextGen

Dodany: 9 maja 2018


This week we begin by updating the status of several ongoing security stories: Russia vs Telegram, DrupalGeddon2, and the return of RowHammer. We will conclude with MAJOR new bad news related to...

SN 661: Securing Connected Things

Dodany: 2 maja 2018


Windows 10 got a new spring in its step, Microsoft further patches Intel microcode, even the UK's NHS plans to update, another hack of modern connected autos, Oracle's botched WebLogic patch, an...

SN 660: Azure Sphere

Dodany: 25 kwietnia 2018


This week we discuss Drupalgeddon2 continuing to unfold right on plan, the Orangeworm takes aim at medical equipment and companies, the FDA moves forward on requiring device updates, Microsoft...

SN 659: Never a Dull Moment

Dodany: 18 kwietnia 2018


This week we discuss AMD's release of their long-awaited Spectre variant 2 microcode patches, the end of Telegram messenger in Russia, the on-time arrival of Drupalgeddon2, Firefox and TLS v1.3,...

SN 658: Deprecating TLS 1.0 & 1.1

Dodany: 11 kwietnia 2018


This week we discuss Intel's big Spectre microcode announcement, Telegram is not long for Russia, the US law enforcement's continuing push for "lawful decryption", more state-level net neutrality...

SN 657: ProtonMail

Dodany: 4 kwietnia 2018


This week we discuss "DrupalGeddon2", Cloudflare's new DNS offering, a reminder about GRC's DNS Benchmark, Microsoft's Meltdown meltdown, the persistent iOS QR Code flaw and its long-awaited v11.3...

SN 656: TLS v1.3 Happens

Dodany: 28 marca 2018


The mess with US voting machines, technology's inherent security vs convenience tradeoff, the evolving 2018 global threat landscape, welcome news on the bug bounty front from Netflix and Dropbox,...

SN 655: Pwn2Own 2018

Dodany: 20 marca 2018


This week we discuss the aftermath of CTS Labs' abrupt disclosure of flaws in AMD's outsourced chipsets, Intel's plans for the future and their recent microcode update news, several of Microsoft's...

SN 654: AMD Chipset Disaster

Dodany: 14 marca 2018


This week we discuss the just-released news of major trouble for AMD's chipset security, ISPs actively spreading state-sponsored malware, Windows 10 S coming soon, a large pile of cryptocurrency...

SN 653: MemCrashed

Dodany: 7 marca 2018


This week we discuss some very welcome microcode news from Microsoft, ten (yes, ten!) new 4G LTE network attacks, the battle over how secure TLS v1.3 will be allowed to be, the incredible Trustico...

SN 652: WebAssembly

Dodany: 28 lutego 2018


This week we discuss Intel's Spectre & Meltdown microcode update, this week in crypto jacking, Tavis strikes again, Georgia on my mind (and not in a good way), news from the iPhone hackers at...

SN 651: Russian Meddling Technology

Dodany: 21 lutego 2018


This week we examine and discuss the appearance of new forms of Meltdown and Spectre attacks, the legal response against Intel, the adoption of new cybersecurity responsibility in New York, some...

SN 650: CryptoCurrency Antics

Dodany: 14 lutego 2018


This week we discuss today's preempted 2nd Tuesday of the month, slow progress on the Intel Spectre firmware update front, a worse-than-originally-thought Cisco firewall appliance vulnerability,...

SN 649: Meltdown & Spectre Emerge

Dodany: 7 lutego 2018


This week we observe that the Net Neutrality battle is actually FAR from lost, ComputerWorld's Woody Leonard enumerates a crazy January of updates, "EternalBlue" is turning out to be far more...

SN 648: Post Spectre?

Dodany: 31 stycznia 2018


This week we discuss continuing Spectre updates, how not to treat Tavis Ormandy, a popular dating app where you'd really hope for HTTPS but be surprised to find it missing, the unintended...

SN 647: The Dark Caracal

Dodany: 24 stycznia 2018


The Meltdown and Spectre vulnerabilities continue to dominate the week's news. So we'll first catch up with what's new there, then discuss the new Net Neutrality violation detection apps that are...

SN 646: The InSpectre

Dodany: 17 stycznia 2018


This week we discuss more trouble with Intel's AMT, what does Skype's use of Signal really mean, the UK's data protection legislation gives researchers a bit of relief, the continuing winding down...

SN 645: The Speculation Meltdown

Dodany: 10 stycznia 2018


This week, before we focus upon the industry-wide catastrophe enabled by precisely timing the instructed execution of all contemporary high-performance processor architectures... we examine a...

SN 644: NSA Fingerprints

Dodany: 3 stycznia 2018


This week we discuss a new clever and disheartening abuse of our browser's handy-dandy username and password autofill, some recent and frantic scurrying around by many OS kernel developers, a...