All the entries are in reverse cronological order. The list is meant to be read from bottom to top. So find the episode you are interested in and look at the tweets from Mr. Gibson above the episode title.
2019-08-20 19:28 - "The KNOB is Broken" Security Now #728 Show Notes: https://www.grc.com/sn/SN-728-Notes.pdf…
Our usual round up of the past week's most significant security news. Lots of fun stuff for this first podcast of our 15th year, including coverage of the latest Bluetooth pairing security disaster. :| [ Link to Twitter ]
2019-08-19 22:06 - Slick trick for "native" folder syncing for http://Sync.com or DropBox: Move native folder under the cloud provider's folder, then use "mklink" command (or Mac/Linux equivalent) to create a Symlink to the original folder location. Works perfectly! :)
More details soon! [ Link to Twitter ]
2019-08-19 22:00 - RT @haral: Join us at OWASP OC's Thursday, Aug 22, dinner meeting. Steve Gibson from GRC is talking about SQRL - Secure Quick Reliable Logi… [ Link to Twitter ]
2019-08-19 21:53 - One problem with http://sync.com is no native Linux support. But I'm all Windows on the desktop. Everything else & mobile is covered. But that might be a deal breaker for some. [ Link to Twitter ]
2019-08-19 21:45 - So far I've experimented with Dropbox, ownCloud, nextcloud, SyncThing, http://sync.com and several others. (Got SyncThing to sync to the cloud, too!) I'll be doing a full feature and experience rundown for Security Now #734 on October 1st... after much more experimenting. [ Link to Twitter ]
2019-08-19 21:39 - Currently testing: 5GB free cloud folder/file instant sync with end-to-end TNO encryption, ability to securely share arbitrary file links, prior file version history (ransomware protection) optional offline storage to free up local space, transparent, using existing folders. [ Link to Twitter ]
2019-08-14 21:06 - FYI: I'm heading toward a hybrid solution with zero-cost or paid options, warrant-proof (TNO) cloud storage, optional archival non-local storage, file versioning, ransomware protection, fully cross-platform, and more. :) [ Link to Twitter ]
2019-08-13 20:04 - "Black Hat & Def Con" | Security Now! #727 Show Notes: https://www.grc.com/sn/SN-727-Notes.pdf…
Some of the news arising from the recently concluded annual Las Vegas hacking events, and a bunch of other interesting news, views and feedback. [ Link to Twitter ]
2019-08-06 20:20 - "Steve's File Sync Journey"
Security Now! #726 Show Notes: https://www.grc.com/SN/sn-726-notes.pdf…
Our typical grab bag of interesting security news. Then I share the result of my multi-month search for a reliable and transparent multi-site file-sync. [ Link to Twitter ]
2019-07-30 19:57 - "Urgent/11" Security Now #725 Show Notes: https://www.grc.com/sn/SN-725-Notes.pdf…
The episode =was= going to be titled "Your NAS is Grass!" ... until yesterday's news about 2 Billion VxWorks devices with CRITICAL Remote Code Execution flaws! Stay Tuned! :) [ Link to Twitter ]
2019-07-16 20:20 - "Encrypting DNS" Security Now! #723 Show Notes:
Our typical weekly roll-up of all the week's most interesting security and privacy news, and then a overview survey of the state of DNS Encryption for privacy and security. :) [ Link to Twitter ]
2019-07-09 20:07 - "Gem Hack & Ghost Protocol"
Security Now! #722 Show Notes: https://www.grc.com/SN/sn-722-notes.pdf…
This week we stumble over a number of instances where technology appears to be colliding with the status quo. How could DNS over HTTPS be controversial?? :-/ [ Link to Twitter ]
2019-06-18 20:11 - "Exim Under Siege" Security Now! #719 Show Notes: https://www.grc.com/sn/SN-719-Notes.pdf…
An extra-spiffy-good podcast today, I suspect, with lots of fun and interesting news. Exim, RAMBleed, Tavis Ormandy, BlueKeep, GandCrab, the new Linux SACK nightmare... and more! :) [ Link to Twitter ]
2019-06-04 20:18 - "The Nansh0u Campaign" Security Now #717 Show Notes: https://www.grc.com/sn/SN-717-Notes.pdf…
The anatomy of a powerful state-level attack, apparently now in the hands of amateurs. (And, of course, a bunch of additional interesting news.) [ Link to Twitter ]
2019-05-28 17:41 - How to obtain the new Windows 10 Feature Update 1903 without waiting:
This will download a small 5.9MB update trigger file from Microsoft. [ Link to Twitter ]
2019-05-14 20:13 - Android "Q" Security Now #715 Show Notes: http://bit.ly/2EbPX5T
We look at many significant Google I/O security and privacy announcements, the new "ZombiLoad" Intel Chip problem <sigh> and then the MAJOR progress Google is making with Android "Q". :) [ Link to Twitter ]
2019-05-07 21:05 - “Post-Coinhive Cryptojacking”
Security Now #713 Show Notes:
The way this podcast's topics came out, it might be called the web browser world update. Which is it say... lots of browser news! :) [ Link to Twitter ]
2019-04-30 19:59 - "Credential Stuffing Attacks"
Security Now! #712 Show Notes:
The strong economic incentives underlying the explosive growth of widespread automated username and password guessing... and the Dark Web. [ Link to Twitter ]
2019-04-23 19:52 - "DNSpionage" Security Now! #711 Show Notes: http://bit.ly/2VZNHFz
Lots of interesting news of the week and a look inside a multi-year sophisticated DNS hijacking campaign by a nation-state actor. [ Link to Twitter ]
2019-04-16 20:17 - "DragonBlood"
Security Now! #710 Show Notes:
The first (successful) attacks against the forthcoming WPA3 protocol which will be replacing our current WPA2. And a bunch of other news of the week. [ Link to Twitter ]
2019-04-09 20:13 - "URL "ping" Tracking" Show Notes: http://bit.ly/2D1f8Y7
The final browser capitulation to unblockable tracking of our actions and behavior across the Internet. But also lots of other less depressing news! :) [ Link to Twitter ]
2019-04-02 20:17 - "Android Security" (quotes not meant to demean: impressive results at Android's 10th birthday.) Security Now! #708 Show Notes: http://bit.ly/2CL6DR5
And a bunch of other news and follow-ups! :) [ Link to Twitter ]
2019-03-26 20:05 - "Tesla, Pwned" Security Now! #707
Show Notes: http://bit.ly/2CDMpII
Waaaay too much to talk about this week, including the results of last week's 3-day Pwn2Own competition. [ Link to Twitter ]
2019-03-19 19:50 - "Open Source eVoting" (DARPA)
Security Now #706 Show Notes:
A good assortment of interesting new and a few follow-ups on recent topics. Should be another useful couple of hours! :) [ Link to Twitter ]
2019-03-12 20:37 - "SPOILER"
Security Now #705 Show Notes:
Spectre meets RowHammer and the result is not good. And we also had a TON of interesting news this past week. So... another interesting podcast, I think. :) [ Link to Twitter ]
2019-03-05 21:32 - "Careers in Bug Hunting" Security Now! #704 Show Notes:
Looks like it's going to be another of our "how much can we cram into 2 hours" news-of-the-week podcast! :) [ Link to Twitter ]
2019-02-19 20:16 - "Authenticity on the Internet"
Security Now! #702 Show Notes:
An important topic this week: What happens when text generating AI bots roam the Internet freely posing and posting as humans? That day is closer than we think. [ Link to Twitter ]
2019-01-29 21:23 - "Browser Extension Security"
Security Now! #699, Show Notes:
A whole bunch of news and an urgent need to update two models of Cisco VPN router! [ Link to Twitter ]
2019-01-22 21:32 - Security Now! #698 "Which Mobile VPN Client?" Show Notes:
And lots of news, some errata, miscellany, listener feedback... and a fun main topic/question answered! [ Link to Twitter ]
2019-01-08 20:03 - Security Now! #695
"Here Comes 2019!" Show Notes:
A grab bag of the major news since our last podcast of 2018... with lots of fun and interesting stuff to discuss! [ Link to Twitter ]
2018-12-11 21:25 - "Internal Bug Discovery"
Security Now! #693 Show Notes:
Another very busy and interesting week of news, and some thoughts about how it matters who discovers a company's bugs. :) [ Link to Twitter ]
2018-12-04 21:02 - "GPU RAM Image Leakage"
Security Now! #692 Show Notes:
Residual web page textures left behind in GPU RAM leak where we're been... and... lots of additional interesting news of the week! :) [ Link to Twitter ]
2018-11-27 20:40 - "ECCploit" (pronounced "exploit" :)
Security Now! #691 Show Notes:
This was a light news week, but we have some interesting news, feedback, and a good topic to tear into. :) [ Link to Twitter ]
2018-11-20 20:26 - "Are Passwords Immortal?"
Security Now! #690 Show Notes:
Troy Hunt believes passwords are here to stay and I don't disagree. But at the same time I do think we need an alternative to be available and ready. :) [ Link to Twitter ]
2018-11-13 21:25 - "Self-Decrypting Drives"
Security Now! #689 Show Notes:
A deep dive into poor SSD Encryption implementation. And, as always, lots of other interesting news of the week. [ Link to Twitter ]
2018-11-08 23:24 - GRC'S DNS Spoofability Tests: Back online!
For any who have been missing those tests (which are unique in the world), the system is up and running once again. Sorry for the outage. I was unaware until recently. :) [ Link to Twitter ]
2018-11-06 21:37 - "PortSmash"
Security Now! #688 Show Notes:
A close look at this week's newly revealed troubles with a common processor feature... and much more! :) [ Link to Twitter ]
2018-10-30 20:10 - "Securing the Vending Machine"
Security Now! #687 Show Notes:
Following up on last week's crypto puzzler and, as always, plenty of other news of the past week. [ Link to Twitter ]
2018-10-23 20:16 - "Libssh's Big Whoopsie!"
Security Now! #686 Show Notes:
Lots of other interesting news and, at the end, a Security Now! design puzzler to think about until next week! :) [ Link to Twitter ]
2018-09-11 19:38 - (For those interested, the recent, now being exploited in the wild, local privilege elevation bug HAS been patched with today's patch Tuesday.) [ Link to Twitter ]
2018-09-11 19:20 - "Exploits & Updates" Security Now #680 Show Notes: http://bit.ly/2x3KkSV
Lots of interesting and engaging news. (No word on today's Patch Tuesday update details yet.) [ Link to Twitter ]
2018-09-04 02:21 - Remember last week's latest new Apache STRUTS vulnerability?
Well, the bar has been forever raised on vulnerability disclosure and demo sites:
http://bit.ly/2PWUXzH [ Link to Twitter ]