SN 942: Encrypting ClientHello - EXIM eMail Servers Exposed, Windows 11 Passkeys, Bing Chat Malware Risk
Security Now (Audio)
Leo Laporte
4.6 • 2.1K Ratings
🗓️ 3 October 2023
⏱️ 126 minutes
🧾️ Download transcript
Summary
- Exim email server ignored ZDI's responsible disclosure of critical remote code execution flaws for over a year, putting millions of servers at risk.
- Malicious ads are appearing in Bing Chat responses, promoting fake sites distributing malware.
- Windows 11 now natively supports passkeys, though browser support may make this redundant.
- Researchers exploit WiFi beamforming side-channel to potentially reveal keystrokes, but practicality is limited.
- The ECH TLS extension encrypts the ClientHello packet to hide SNI data.
- Exim disclosure timeline and impact on millions of vulnerable servers.
- Bing chat ads mimic search result malvertising risks amplified by chatbot trust.
Show notes: https://www.grc.com/sn/SN-942-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
Transcript
Click on a timestamp to play from that location
| 0:00.0 | It's time for Security Now, Steve Gibson is here there's a big flaw in the world's most popular email server and it's been there for a long time. |
| 0:09.0 | We'll talk about a new attack on Wi-Fi and passwords that you don't have to worry about. |
| 0:17.0 | And why is there no Nobel Prize for Mathematics? |
| 0:20.0 | Steve Gibson and then a whole lot more coming up next on Security Now. |
| 0:24.0 | Podcasts you love. |
| 0:28.0 | From people you trust. |
| 0:31.0 | This is Detroit. |
| 0:37.0 | This is Security Now with Steve Gibson, episode 942, recorded Tuesday, October 3rd, 2023, encrypting client hello. |
| 0:49.0 | Security Now is brought to you by Thinkst Kanari. |
| 0:53.0 | Kanari tokens are a quick, painless way to help defenders discover they've been breached by having attackers announce themselves. |
| 1:00.0 | For 10% off and a 60-day money-back guarantee, go to Kanari.tools-twit and to the code TWIT in the how did you hear about this box? |
| 1:09.0 | And by ExpressVPN. |
| 1:12.0 | Make sure your online activity and data is protected. |
| 1:15.0 | With the best VPN money can buy, visit ExpressVPN.com slash Security Now right now and get three extra months free when you buy a one-year package. |
| 1:25.0 | And by Collide. |
| 1:28.0 | Collide is a device trust solution for companies with OCTA. |
| 1:32.0 | Collide ensures if a device isn't trusted and secure and can't log into your cloud apps. |
| 1:37.0 | Visit K-O-L-I-D-E-Collide.com slash Security Now to book an on-demand demo today. |
| 1:46.0 | It's time for Security Now, the show featuring the star of the TWIT Network, Mr. Steve Gibson. |
| 1:53.0 | And I say that, Steve. |
| 1:55.0 | Hello, Steve. |
| 1:56.0 | Hello. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.