SN 1006: Best of 2024 - Apple's Secret Backdoor, CrowdStrike Catastrophe, Recall's Privacy Nightmare
Security Now (Audio)
Leo Laporte
4.6 • 2.1K Ratings
🗓️ 23 December 2024
⏱️ 155 minutes
🧾️ Download transcript
Summary
Leo revisits some of the year's top Security Now segments of 2024.
- 956. Apple's Hardware Backdoor: Steve reflects on the previous week's 'The Mystery of CVE-2023-38606' deep-dive. Did Apple deliberately designed a secure backdoor?
- 960. Unforeseen Consequences of Google's 3rd-party Cookie Cutoff: As Google moves to phase out third-party cookies, the advertising industry scrambles to find new ways to track users, potentially leading to more intrusive methods like requiring users to create accounts on websites.
- 961. Bitlocker: Chipped or Cracked?: A clever hacker demonstrates how BitLocker-encrypted drives can be compromised on systems using separate TPM chips, highlighting the importance of integrating TPM functionality directly into the CPU.
- 964. So, What Is Apple's PQ3?: Steve analyzes Apple's new "PQ3" post-quantum safe iMessaging protocol, uestioning whether it truly offers superior security compared to Signal's existing solution.
- 976. Recall - The 50 Gigabyte Privacy Bomb: Examining Microsoft's new "Recall" feature that records users' screens every few seconds, raising significant privacy concerns.
- 984. CrowdStruck: A look at the disastrous global IT outage caused by a faulty CrowdStrike Falcon update, affecting airports, hospitals, banks, and more.
- 1000. Steve and Leo reflect on 1000 episodes of Security Now.
- 1001. Artificial General Intelligence: Steve and Leo discuss the challenges in achieving artificial general intelligence (AGI) and the debate surrounding its potential timeline and societal impact.
Host: Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Happy holidays, everybody. We gave Steve Gibson the week off. Actually, we gave him two weeks off. |
| 0:05.7 | But coming up next, the best of Security Now, 2024. |
| 0:13.1 | Podcasts you love. From people you trust. |
| 0:17.4 | This is Twitter. |
| 0:22.4 | This is Security Now, episode 1006, for Christmas Eve, December 24th, 20204, the best of the year. |
| 0:33.0 | Hey, everybody, I'm Leo Lipport, and welcome to Security Now's Best of 2024. For years, |
| 0:41.7 | Steve would get mad at us when we said, Steve, you can't do a show. It's Christmas Eve. It's New Year's |
| 0:47.2 | Eve. This year, I guess because I don't know, Steve's married now and wants to spend more time with his family. He's very happy |
| 0:55.6 | to have Christmas and New Year's Eve off. So we're very happy to give it to him. This week we're |
| 1:01.2 | going to do a best of. And there were a lot of moments all year long in security now that were |
| 1:05.5 | pretty fascinating. It's almost hard to pick just one. But let's start with something early in the year, |
| 1:13.5 | something that I think Steve really had the scoop on, a mysterious backdoor in Apple's iPhones. |
| 1:22.3 | I want to begin, as I said, with a bit of a follow-up to last week's news. |
| 1:29.2 | Yeah, we've been talking about it. We talked about it on Mac Break Weekly today. We talked |
| 1:32.1 | about on Twitter on Sunday. I think it's really a big deal story, which I'm not seeing |
| 1:38.1 | anywhere but here. That's exactly right. And in fact, we have some, we have some Q&A later, |
| 1:43.9 | and one of our listeners said, |
| 1:45.7 | how is this not getting more attention? Anyway, we will talk about that when we get there. |
| 1:50.6 | But the way we left things last week in the wake of this revelation was with a large array of possibilities. |
| 1:58.9 | Since then, I've settled upon exactly one, which I believe is the best |
| 2:04.7 | fit with every fact we have. You know, again, no speculation here, although, again, we're never |
| 2:11.8 | going to have a lot of answers to these questions. Many people sent notes following up on last |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.