SN 1018: The Quantum Threat - ESP32 Backdoor Update, RCS E2EE
Security Now (Audio)
Leo Laporte
4.6 • 2.1K Ratings
🗓️ 25 March 2025
⏱️ 173 minutes
🧾️ Download transcript
Summary
- The dangers of doing things you don't understand.
- Espressif responds to the claims of an ESP32 backdoor.
- A widely leveraged mistake Microsoft stubbornly refuses to correct.
- A disturbingly simple remote takeover of Apache Tomcat servers.
- A 10/10 vulnerability affecting some ASUS, ASRock and HPE motherboards.
- Google snapped up another cloud security firm but paid a price!
- RCS messaging to soon get full end-to-end encryption (done right!).
- How did an AI Crypto Chatbot lose $105,000? ...and what is an AI Crypto Chatbot?
- Looks like Oracle may take stewardship of TikTok to keep it in-country.
- Whoops! 23andMe is sinking — don't let them take your genetics with them!
- The White House says "the cyber guys should stay!"
- AI project failure rates are on the rise. Anyone surprised?
- Listener feedback, and a very interesting update on just how looming is the threat from quantum computing?
Show Notes - https://www.grc.com/sn/SN-1018-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit
Sponsors:
Transcript
Click on a timestamp to play from that location
| 0:00.0 | It's time for security. Now, Steve Gibson is here. He'll talk about a bug Microsoft has known about for years, refuses to correct and is now being used by 11. Count him 11 hacker organizations. |
| 0:13.0 | A very disturbing remote takeover of a patchy Tomcat server, something you're going to want to patch right away. |
| 0:25.2 | He's going to talk about the Signal breach, the Department of Defense use of signal, and why that's an unsafe thing to do. |
| 0:27.2 | And then finally, if you weren't worried about the future already, stay tuned because |
| 0:33.9 | Steve's going to be talking about the threat that post-quantum cryptography poses to everything you know. |
| 0:42.7 | It's all coming up next. |
| 0:44.4 | A big one on Security Now. |
| 0:48.4 | Podcasts you love. |
| 0:50.3 | From people you trust. |
| 0:52.8 | This is Twitter. This is Twitter. |
| 0:58.1 | This is Security Now with Steve Gibson. |
| 1:01.0 | Episode 118, |
| 1:03.1 | recorded Tuesday, March 25th, 2025, |
| 1:06.9 | The Quantum Threat. |
| 1:09.2 | It's time for security now, the show we cover the latest security news, privacy information, |
| 1:15.0 | with a little dollop of sci-fi and stuff like that thrown in with this guy right here, Mr. Steve Gibson, |
| 1:22.0 | the man of the hour. |
| 1:23.3 | Hi, Steve. |
| 1:24.3 | And hopefully some fun. |
| 1:26.3 | One of the things that I often hear from our listeners in feedback is that they find this |
| 1:32.5 | entertaining. |
| 1:33.5 | It is entertaining. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.