Goodpods logo
Goodpods

Log in

goodpods headphones icon

To access all our features

Open the Goodpods app
Close icon
Security Now (Audio) - SN 902: A Generic WAF Bypass - Pwn2Own Toronto, URSNIF malware, Vivaldi Mastodon support, Bye Bye SHA-1

SN 902: A Generic WAF Bypass - Pwn2Own Toronto, URSNIF malware, Vivaldi Mastodon support, Bye Bye SHA-1

12/20/22 • 116 min

1 Listener

Security Now (Audio)
  • Picture of the Week.
  • A malware operation known as URSNIF.
  • Pwn2Own Toronto 2022.
  • Citrix and Fortinet recently released security updates to patch 0-day vulnerabilities.
  • Patch Tuesday.
  • Another Uber breach?
  • Elon Botches 'Bot Blockage.
  • Vivaldi integrates Mastodon in its desktop browser.
  • 5,200 Dutch government warnings.
  • CIB: "Coordinated Inauthentic Behavior"
  • GitHub to require 2FA by the end of next year.
  • Bye bye SHA-1.
  • WordFence's VERY useful looking WordPress add-on vulnerability database.
  • Closing The Loop.
  • SpinRite.
  • A Generic WAF Bypass.

Show Notes https://www.grc.com/sn/SN-902-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsor:

plus icon
bookmark
  • Picture of the Week.
  • A malware operation known as URSNIF.
  • Pwn2Own Toronto 2022.
  • Citrix and Fortinet recently released security updates to patch 0-day vulnerabilities.
  • Patch Tuesday.
  • Another Uber breach?
  • Elon Botches 'Bot Blockage.
  • Vivaldi integrates Mastodon in its desktop browser.
  • 5,200 Dutch government warnings.
  • CIB: "Coordinated Inauthentic Behavior"
  • GitHub to require 2FA by the end of next year.
  • Bye bye SHA-1.
  • WordFence's VERY useful looking WordPress add-on vulnerability database.
  • Closing The Loop.
  • SpinRite.
  • A Generic WAF Bypass.

Show Notes https://www.grc.com/sn/SN-902-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsor:

Previous Episode

undefined - SN 901: Apple Encrypts the Cloud - Chrome Passkeys, Telegram malware, SYNC.com outage, Rackspace lawsuits

SN 901: Apple Encrypts the Cloud - Chrome Passkeys, Telegram malware, SYNC.com outage, Rackspace lawsuits

  • Picture of the Week.
  • Chrome does Passkeys.
  • SYNC.COM suffered its first outage.
  • Medibank reboot.
  • Totally fake cryptocurrency trading platforms.
  • Malware on Telegram.
  • Texas gets in on the TikTok banning.
  • The LastPass class action lawsuit.
  • Rackspace had a big embarrassing problem.
  • Rackspace is now facing at least three class action lawsuits.
  • Another country goes on the offensive.
  • Closing The Loop.
  • SpinRite.
  • Miscellany.
  • Apple Encrypts the Cloud.

Show Notes https://www.grc.com/sn/SN-901-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

Next Episode

undefined - SN 903: Security Now Best of 2022 - The best moments from throughout the year

SN 903: Security Now Best of 2022 - The best moments from throughout the year

  • Anatomy of a Log4j Exploit.
  • Will Russia Disconnect?
  • FCC Says Kaspersky Labs is a National Security Threat.
  • Lenovo UEFI Firmware Troubles.
  • That "Passkeys" Thing.
  • Dis-CONTI-nued: The End of Conti?
  • Steve's Take on the LastPass Breach.

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Sponsors:

If you like this episode you’ll love
Aspen Ideas to Go

Aspen Ideas to Go

ITSPmagazine Podcasts

ITSPmagazine Podcasts

Channels with Peter Kafka

Channels with Peter Kafka

Shifting Schools: Conversations for K12 Educators

Shifting Schools: Conversations for K12 Educators

Darknet Diaries

Darknet Diaries

Episode Comments

Featured in these lists

  • Alberto Daniel's profile image

    The best podcasts about hacking stories

    Curated by Alberto Daniel

    • Generate a badge

    Get a badge for your website that links back to this episode

    Select type & size
    Open dropdown icon
    share badge image

    <a href="https://goodpods.com/podcasts/security-now-audio-177554/sn-902-a-generic-waf-bypass-pwn2own-toronto-ursnif-malware-vivaldi-mas-26885435"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to sn 902: a generic waf bypass - pwn2own toronto, ursnif malware, vivaldi mastodon support, bye bye sha-1 on goodpods" style="width: 225px" /> </a>

    Copy