Ongoing WordPress attack, RCS gets End-to-end encryption.

• Chrome moves to release 87.
• Explicit Publication of Privacy Practices.
• Firefox 83 gets HTTPS-only Mode.
• Mozilla seeks consultation on implementing DNS-over-HTTPS.
• The comical announcement strategy of the Egregor Ransomware.
• Large-scale attacks targeting Epsilon Framework Themes in WordPress.
• Cybercrime gang installs hidden e-commerce stores on WordPress sites.
• 245,000 Windows systems still vulnerable to BlueKeep RDP bug.
• Google's Rich Communication Services is getting E2EE via Signal.
• Cicada, a Chinese state-sponsored advanced persistent threat group.

We invite you to read our show notes at https://www.grc.com/sn/SN-794-Notes.pdf

Hosts: Steve Gibson and Jason Howell

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• manscaped.com/twit
• extrahop.com/SECURITYNOW
• barracuda.com/securitynow

Malicious Android apps, ransomware-as-a-service.

• Where do most malicious Android apps come from?
• SAD DNS is a revival of the classic DNS cache poisoning attack
• How many Ransomware-as-a-Service (RaaS) operations are there?
• Ragnar Locker ransomware gang takes out a Facebook ad
• Two more new 0-days revealed in Chrome
• Last Tuesday, Microsoft fixed 112 known vulnerabilities in Microsoft products

We invite you to read our show notes at https://www.grc.com/sn/SN-793-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• canary.tools/twit - use code: TWIT
• extrahop.com/SECURITYNOW
• WWT.COM/TWIT

SlipStream NAT firewall bypass, MS Police use Ring doorbell cams.

• Let's Encrypt's cross-signed root expires next year
• Chrome updates on Windows, macOS, Linux, and Android to remove 0-day vulnerability
• Mattel, Compel, Capcom, and Campari fall to ransomware attacks
• iOS 14.2 fixes three 0-day vulnerabilities
• Introducing the Tianfu Cup: China's version of the Pwn2Own hacker competition
• November's Patch Tuesday
• The Great Encryption Dilemma hits Europe
• Ring Doorbells to be tapped in a trial by local Police
• WordPress plugins are a hot mess for security
• SlipStream NAT Firewall Bypass

We invite you to read our show notes at https://www.grc.com/sn/SN-792-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• Melissa.com/twit
• itpro.tv/securitynow promo code SN30
• Wasabi.com offer code SECURITYNOW

Google One VPN, WordPress update fail, Windows 7 0-Day.

• A new 0-day in Win7 through Win10
• A public service reminder from Microsoft
• Google One adding an Android VPN
• Vulnonym: Stop the Naming Madness!
• WordPress fumbles an important update
• Chrome's Root Program

We invite you to read our show notes at https://www.grc.com/sn/SN-791-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• WWT.COM/TWIT
• expressvpn.com/securitynow
• LastPass.com/twit

Chrome 0-Day, Edge for Linux, WordPress Loginizer.

• Top 25 Vulnerabilities
• Critical 0-day in Chrome
• Chrome 86 is now blocking slippery notifications
• Site Isolation coming soon to Firefox
• Microsoft's Chredge for Linux
• WordPress Loginizer vulnerability

We invite you to read our show notes at https://www.grc.com/sn/SN-790-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• try.eset.com/twit
• manscaped.com/twit
• barracuda.com/petsmart

Zoom end-to-end encryption, Windows 10 god mode, Manifest v3.

• Last Wednesday, Zoom announced that THIS week their 30-evaluation of end-to-end encrypted video conferencing would begin
• How to enable Windows 10 "God Mode"
• Edge to be updated with browser extensions "Manifest v3"
• Last Tuesday Microsoft issued fixes for 87 security vulnerabilities - so, yeah, it was a slow month...
• Your SonicWall Network Security Appliance (NSA) MUST be patched now!
• Microsoft's two out-of-cycle patches
• Anatomy of a Ryuk Attack

We invite you to read our show notes at https://www.grc.com/sn/SN-789-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• privacy.com/securitynow
• WWT.COM/TWIT
• extrahop.com/SECURITYNOW

Carnival Cruise hack, ZeroLogon, Five Eyes vs Encryption.

• Chrome gets 86'd!
• Carnival Cruise Line Hack
• The largest company you've never heard of gets hit by ransomware hackers
• No connection logs? In France, you go to jail!
• Hacking the Apple
• ZeroLogon, the FBI, DHS and our forthcoming election security
• The revenge of DNT, as GPC, now enhanced with legislation
• The Anti-E2EE drumbeat beats yet again

We invite you to read our show notes at https://www.grc.com/sn/SN-788-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• itpro.tv/securitynow promo code SN30
• canary.tools/twit - use code: TWIT
• Wasabi.com offer code SECURITYNOW

Android Security, Windows 7 Security, Microsoft Defender.

• Google to get even more proactive about Android security
• Why are people sticking with Windows 7?
• And Google funds a JavaScript research engine
• Microsoft Defender gets in Vitro Updating
• WSL 2 (Windows Subsystem for Linux v2) completely bypasses the hosting Windows 10 firewall
• Most Microsoft Exchange Servers remain unpatched after 9 eight months!
• Cloudflare has just added a free web API firewall service for all customers
• US Dept of the Treasury tightens up on Ransomware payments
• UEFI Bootkits are becoming more mainstream

We invite you to read our show notes at https://www.grc.com/sn/SN-787-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• LastPass.com/twit
• WWT.COM/TWIT
• Melissa.com/twit

Amazon flying security cam, ZeroLogon on GitHub, ransomware roundup.

• What could possibly go wrong: Amazon/Ring's autonomous flying home security webcam
• Evil ransomware gang deposited $1 million of bitcoin in a hacker recruitment drive
• Over this past weekend, Universal Health Services was hit by a huge Ryuk ransomware
• One week ago, there were three ZeroLogon exploits on GitHub. Today there are more than fit on the first page of search results
• Security Fixes in Chrome's v85.0.4183.121 Release
• The VPN you choose DOES make a difference.
• A "Ransomware Goldrush"

We invite you to read our show notes at https://www.grc.com/sn/SN-786-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• expressvpn.com/securitynow
• barracuda.com/securitynow
• extrahop.com/SECURITYNOW

iOS 14 & Android 11 security features, DuckDuckGo gets big.

• The most important iOS 14 privacy & security features
• All of Android 11's new privacy & security features
• DuckDuckGo usage growth goes exponential
• LAN attack bug fixed in Firefox 79 for Android
• Goodbye Forever Firefox Send and Notes... Oh, how we loved ye
• Microsoft's catastrophic Zerologon vulnerability
• Why we're headed toward formal verification of security protocols

We invite you to read our show notes at https://www.grc.com/sn/SN-785-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

• extrahop.com/SECURITYNOW
• Wasabi.com offer code SECURITYNOW
• securityscorecard.com/twit