SN 1038: Perplexity's Duplicity - Malicious Repository Libraries
Security Now (Audio)
Leo Laporte
4.6 • 2.1K Ratings
🗓️ 12 August 2025
⏱️ 184 minutes
🧾️ Download transcript
Summary
- CISA's Emergency Directive to ALL Federal agencies re: SharePoint.
- NVIDIA firmly says "no" to any embedded chip gimmicks.
- Dashlane is terminating its (totally unusable) free tier.
- Malicious repository libraries are becoming even more hostile.
- The best web filter (uBlock Origin) comes to Safari.
- The very popular SonicWall firewall is being compromised.
- >100 models of Dell Latitude and Precision laptops are in danger.
- The significant challenge of patching SharePoint (for example).
- A quick look at my DNS Benchmark progress.
- Does InControl prevent an important update.
- An venerable Sci-Fi franchise may be getting a great new series.
- What to do about the problem of AI "website sucking"
Show Notes - https://www.grc.com/sn/SN-1038-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit
Sponsors:
Transcript
Click on a timestamp to play from that location
| 0:00.0 | It's time for security now. Steve Gibson's here. The government has something to say to federal agencies regarding |
| 0:05.4 | SharePoint. Oh, and there's another, oh my God, exchange flaw you need to know about. |
| 0:13.2 | We're going to talk about the best ad blocker finally coming to Safari, a very popular firewall that has been compromised, and why, if you have a Dell latitude or precision laptop, you must listen to this show. |
| 0:27.6 | All that more coming up next on Security Now. |
| 0:33.3 | Podcasts you love. |
| 0:35.1 | From people you trust. |
| 0:44.8 | This is Twitter. Okay. podcasts you love from people you trust this is twit this is security now with steve gipson episode one thousand thirty eight recorded tuesday august 12th twenty |
| 0:50.6 | twenty twenty five perplexity duplicity it's time security now. I know you wait all week for this. |
| 0:58.0 | It's Tuesday. Woo-hoo. The best part of Tuesday is when Steve Gibson shows up to fill us in and |
| 1:04.4 | what horrible things have been happening all week. But you know, Steve, it's funny because it doesn't |
| 1:10.3 | scare me. It reassures me. |
| 1:13.6 | There's some, there's some sanity in all this, that there's somebody thinking about this. |
| 1:18.2 | And even if we're decrying Microsoft's, you know, inability to write safe software or, |
| 1:24.4 | you know, the ranc, this plague of ransomware, it feels like it's, |
| 1:28.2 | it's being managed by this guy right here. So thank goodness for Steve. Well, and actually, |
| 1:32.5 | not by me. I'm just reporting on it. But I would argue that the, all the problems which have |
| 1:38.8 | been created have created another industry of their own, all these security researchers who are digging into this stuff. |
| 1:46.8 | We have a, we have, we have, we, we, we, we, we, we, we, we, we, we, we, we, we, we, we, we, |
| 1:51.8 | a, uh, uh, Cisco's Talos group, who went, like, way beyond the call of duty, reverse |
| 1:58.5 | engineering a chip in Dell laptops. you know thanklessly they didn't know |
| 2:05.1 | what they were going to find what they found was horrified as it turns out and it's it's like |
| 2:11.5 | Dell you know made it more difficult somewhere Dell has a file of all the source code of the firmware in this security |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.