The Power of Privilege - New cURL vulnerabilities, CVSS 10.0 Cisco Nightmare, So long VBScript!

Sdílet
Vložit
  • čas přidán 23. 10. 2023
  • • How fake drives continue to be sold on Amazon despite negative reviews
    • Microsoft is discontinuing support for the VBScript language
    • The 30-year old NTLM authentication protocol will eventually be removed from Windows
    • Two new vulnerabilities found in cURL
    • A new Cisco router vulnerability rated CVSS 10.0 was used to hack over 40,000 devices
    • Debate over whether "lib" should rhyme with "vibe" or "air"
    • Instructions for accessing the SpinRite 6.1 pre-release version
    • Feedback on passkey exportability and server IP address encryption
    • A listener asks if ransomware can encrypt already encrypted files
    • How Privacy Badger un-rewrites Google's search result links
    • The NSA and CISA warn about the power of privilege and the dangers of account misconfigurations like privilege creep, elevated service account permissions, and non-essential use of elevated accounts
    Show Notes - www.grc.com/sn/SN-945-Notes.pdf
    Hosts: Steve Gibson and Leo Laporte
    Security Now episode 945
    More Info: twit.tv/shows/security-now/ep...
    Sponsors:
    • drata.com/twit
    • joindeleteme.com/twit promo code TWIT
    • canary.tools/twit - use code: TWIT
    Download or subscribe to this show at twit.tv/shows/security-now
    Get episodes ad-free with Club TWiT at twit.tv/clubtwit
    You can submit a question to Security Now at the GRC Feedback Page.
    For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com/ also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
    Products we recommend: www.amazon.com/shop/twitnetca...
    TWiT may earn commissions on certain products.
    Join our TWiT Community on Discourse: www.twit.community/
    Follow us:
    twit.tv/
    / twit
    / twitnetwork
    / twit.tv
    About us:
    TWiT.tv is a technology podcasting network located in the San Francisco Bay Area with the #1 ranked technology podcast This Week in Tech hosted by Leo Laporte. Every week we produce over 30 hours of content on a variety of programs including Tech News Weekly, MacBreak Weekly, This Week in Google, Windows Weekly, Security Now, All About Android, and more.
  • Věda a technologie

Komentáře •

Další v pořadí
Automatické přehrávání
CitrixBleed - iMessage Contact Key Verification, HackerOne bug bounty news, CISA's Logging Made Easy2:01:35CitrixBleed - iMessage Contact Key Verification, HackerOne bug bounty news, CISA's Logging Made Easy
CitrixBleed - iMessage Contact Key Verification, HackerOne bug bounty news, CISA's Logging Made EasySecurity Now
zhlédnutí 9K
Unforeseen Consequences - CISA’s “Secure by Design” Initiative, Fastly's BoringSSL2:04:14Unforeseen Consequences - CISA’s “Secure by Design” Initiative, Fastly's BoringSSL
Unforeseen Consequences - CISA’s “Secure by Design” Initiative, Fastly's BoringSSLSecurity Now
zhlédnutí 11K
NSA Backdoor in Windows? This and more from the guy who created Windows Task Manager!53:11NSA Backdoor in Windows? This and more from the guy who created Windows Task Manager!
NSA Backdoor in Windows? This and more from the guy who created Windows Task Manager!David Bombal
zhlédnutí 453K
So Cruel!😩 Say No To Turtle Painting🐢🎨 #catvideos #catmemes #trending00:24So Cruel!😩 Say No To Turtle Painting🐢🎨 #catvideos #catmemes #trending
So Cruel!😩 Say No To Turtle Painting🐢🎨 #catvideos #catmemes #trendingOscar's Funny World
zhlédnutí 17M
100❤️00:19100❤️
100❤️MY💝No War🤝
zhlédnutí 22M
小偷捂晕妈妈强行闯入室内,写作业的小朋友灵机一动用两个橙子成功吓跑小偷!#儿童安全教育 #防拐 #儿童安全#儿童自救00:59小偷捂晕妈妈强行闯入室内,写作业的小朋友灵机一动用两个橙子成功吓跑小偷!#儿童安全教育 #防拐 #儿童安全#儿童自救
小偷捂晕妈妈强行闯入室内,写作业的小朋友灵机一动用两个橙子成功吓跑小偷!#儿童安全教育 #防拐 #儿童安全#儿童自救疯狂导演刘浩影
zhlédnutí 25M
P.A.T. x Sima - Továreň na peniaze |Official Video|03:27P.A.T. x Sima - Továreň na peniaze |Official Video|
P.A.T. x Sima - Továreň na peniaze |Official Video|P.A.T. Official
zhlédnutí 994K
BGP Deep Dive2:10:28BGP Deep Dive
BGP Deep DiveKevin Wallace Training, LLC
zhlédnutí 178K
When Hashes Collide - Secure-wipe best practices, browser identity segregation, bye bye Twitter (X)2:06:01When Hashes Collide - Secure-wipe best practices, browser identity segregation, bye bye Twitter (X)
When Hashes Collide - Secure-wipe best practices, browser identity segregation, bye bye Twitter (X)Security Now
zhlédnutí 9K
Star Trek: The Evolution of the USS Enterprise A-J26:23Star Trek: The Evolution of the USS Enterprise A-J
Star Trek: The Evolution of the USS Enterprise A-JHalfscreen
zhlédnutí 78K
No more boot loader: Please use the kernel instead - DevConf.CZ 202434:54No more boot loader: Please use the kernel instead - DevConf.CZ 2024
No more boot loader: Please use the kernel instead - DevConf.CZ 2024DevConf
zhlédnutí 5K
Encrypting ClientHello - EXIM eMail Servers Exposed, Windows 11 Passkeys, Bing Chat Malware Risk2:06:04Encrypting ClientHello - EXIM eMail Servers Exposed, Windows 11 Passkeys, Bing Chat Malware Risk
Encrypting ClientHello - EXIM eMail Servers Exposed, Windows 11 Passkeys, Bing Chat Malware RiskSecurity Now
zhlédnutí 8K
Ethernet Turned 50 - Signal funding, X (Twitter) ad fallout, RCS for iPhone, TETRA review2:12:55Ethernet Turned 50 - Signal funding, X (Twitter) ad fallout, RCS for iPhone, TETRA review
Ethernet Turned 50 - Signal funding, X (Twitter) ad fallout, RCS for iPhone, TETRA reviewSecurity Now
zhlédnutí 9K
Pilot Refuses to Land17:49Pilot Refuses to Land
Pilot Refuses to Land74 Gear
zhlédnutí 697K
A Week of News and Listener Views - HSS Breach, CISA's Policing Results2:14:59A Week of News and Listener Views - HSS Breach, CISA's Policing Results
A Week of News and Listener Views - HSS Breach, CISA's Policing ResultsSecurity Now
zhlédnutí 13K
Revisiting Global Privacy Control - Voyager 2, MS Security, keyboard acoustic side-channel attacks2:00:40Revisiting Global Privacy Control - Voyager 2, MS Security, keyboard acoustic side-channel attacks
Revisiting Global Privacy Control - Voyager 2, MS Security, keyboard acoustic side-channel attacksSecurity Now
zhlédnutí 10K
#phonescreenprotector #tempered #smartphone #temperedglass #cellphone #goodthing #mobilephone #tech01:00#phonescreenprotector #tempered #smartphone #temperedglass #cellphone #goodthing #mobilephone #tech
#phonescreenprotector #tempered #smartphone #temperedglass #cellphone #goodthing #mobilephone #techMagicJohn
zhlédnutí 19M
Worlds smallest 4K headset 😎 Visor.com #tech #vr #technology #virtualreality #insideout200:15Worlds smallest 4K headset 😎 Visor.com #tech #vr #technology #virtualreality #insideout2
Worlds smallest 4K headset 😎 Visor.com #tech #vr #technology #virtualreality #insideout2Immersed
zhlédnutí 112M
ЧТО ЭТО За Флешки Замурованные в СТЕНЕ? #shorts00:53ЧТО ЭТО За Флешки Замурованные в СТЕНЕ? #shorts
ЧТО ЭТО За Флешки Замурованные в СТЕНЕ? #shortsBubble™
zhlédnutí 3,5M
Tary si kupuje zbytečnosti?! Využil sluchátka či ne? 😂🤣00:54Tary si kupuje zbytečnosti?! Využil sluchátka či ne? 😂🤣
Tary si kupuje zbytečnosti?! Využil sluchátka či ne? 😂🤣Tary
zhlédnutí 168K
S24 Ultra and IPhone 14 Pro Max telephoto shooting comparison #shorts00:15S24 Ultra and IPhone 14 Pro Max telephoto shooting comparison #shorts
S24 Ultra and IPhone 14 Pro Max telephoto shooting comparison #shortsPhotographer Army
zhlédnutí 5M
$1 vs $100,000 Slow Motion Camera!00:44$1 vs $100,000 Slow Motion Camera!
$1 vs $100,000 Slow Motion Camera!Hafu Go
zhlédnutí 23M
I Phone Vs Nokia Phone 😈 Who Is best✅️ #Your favorite Phone 📱 Comment #Youtubeshorts00:20I Phone Vs Nokia Phone 😈 Who Is best✅️ #Your favorite Phone 📱 Comment #Youtubeshorts
I Phone Vs Nokia Phone 😈 Who Is best✅️ #Your favorite Phone 📱 Comment #YoutubeshortsEG Axternal
zhlédnutí 1,6M
Deep Cleaning and Fixing 6 Year Old’s DIRTIEST IPad 🤮 #shorts #apple #ipad01:00Deep Cleaning and Fixing 6 Year Old’s DIRTIEST IPad 🤮 #shorts #apple #ipad
Deep Cleaning and Fixing 6 Year Old’s DIRTIEST IPad 🤮 #shorts #apple #ipadMONEY TALKS WIRELESS
zhlédnutí 9M