SN 1012: Hiding School Cyberattacks - SparkCat, Decrypting ADP, AI Fuzzing
Security Now (Audio)
Leo Laporte
4.6 • 2.1K Ratings
🗓️ 11 February 2025
⏱️ 161 minutes
🧾️ Download transcript
Summary
- New "SparkCat" secret-stealing AI image scanner discovered in App and Play stores.
- The UK demands that Apple does the impossible: decrypting ADP cloud data.
- France moves forward on legislation to require backdoors to encryption.
- Firefox moves to 135 with a bunch of useful new features.
- The Five Eyes alliance publishes edge-device security guidance.
- Six NetGear routers contain CVSS 9.6 and 9.8 vulnerabilities.
- Sysinternals utilities allow malicious Windows DLL injection.
- Google removes restrictive do-gooder language from AI application policies.
- "AI Fuzzing" successfully jailbreaks the most powerful ChatGPT o3 model.
- Examining the well and deliberately hidden truth behind ransomware cyberattacks on U.S. K-12 schools
Show Notes - https://www.grc.com/sn/SN-1012-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit
Sponsors:
Transcript
Click on a timestamp to play from that location
| 0:00.0 | It's cyber security. Now, Steve Gibson is here. We're going to talk about that malware that crept into the Apple App Store just a couple of weeks ago. |
| 0:10.6 | The UK says Apple has to put a backdoor in its encryption, Steve's opinion on that. |
| 0:16.2 | And we'll talk about how common it is for schools in the United States to hide the fact that they've been ransomware. |
| 0:25.9 | And why they do it. |
| 0:27.5 | It's all coming up next on security now. |
| 0:32.0 | Podcasts you love. |
| 0:33.7 | From people you trust. |
| 0:36.1 | This is Twitter. |
| 0:41.3 | This is Security Now with Steve Gibson. |
| 0:44.5 | Episode 112, |
| 0:46.6 | recorded Tuesday, February 11th, 20205, |
| 0:50.5 | hiding school cyber attacks. |
| 0:53.3 | It's time for security now. |
| 0:55.9 | The show we cover the latest security news, privacy news, encryption news, and |
| 1:01.6 | sprinkle in a little bit of stuff about science fiction and TV shows and whatever else. |
| 1:06.1 | This guy right here is into at the moment. |
| 1:09.0 | Steve Gibson, our polymathic master of ceremonies. Hi, Steve. |
| 1:14.2 | Hello, my friend. It's great to be with you again for now we're out of the binary episodes. |
| 1:20.1 | We had one zero one zero. Well, we had, we had of course, 1,000, then we had 1001, then we had 110, 2011. Now we're at, unfortunately, |
| 1:31.9 | until we get to 1,100, which, you know, that's not that far. No, it's only 88 episodes |
| 1:37.5 | away. We could do it. I think we're going to still be here. That's less than two years. |
| 1:42.0 | We will definitely be here for 1100. Until then, back to decimal. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.