SN 997: Credential Exchange Protocol - DJI Sues DoD, Quantum Vs. RSA, Lost MS Logs
Security Now (Audio)
Leo Laporte
4.6 • 2.1K Ratings
🗓️ 22 October 2024
⏱️ 139 minutes
🧾️ Download transcript
Summary
- Did Chinese researchers really break RSA encryption? What did they do?
- What next-level terror extortion is being powered by the NPD breach data?
- The EU to hold software companies liable for software security?
- Microsoft lost weeks of security logs. How hard did the try to fix the problem?
- The Chinese drone company DJI has sued the DoJ over its ban on DJI's drones.
- The DoJ wishes to acquire "DeepFake" technology to create fake people.
- Microsoft has bots pretending to fall for phishing campaigns, then leading the bad guys to their honeypots. It's diabolical and brilliant.
- A bit of BIMI logo follow-up, then...
- A look at the operation of the FIDO Alliance's forthcoming Credential Exchange Protocol which promises to create passkey collection portability
Show Notes - https://www.grc.com/sn/SN-997-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to this show at https://twit.tv/shows/security-now.
Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Sponsors:
Transcript
Click on a timestamp to play from that location
| 0:00.0 | It's time for security now. |
| 0:01.2 | Steve Gibson is here. We have things to talk about. |
| 0:04.2 | Did Chinese researchers really crack RSA? |
| 0:08.4 | This might be a problem of headline confusion. |
| 0:11.6 | The DoD is being sued by D.J. I over their drone ban and a look at the new |
| 0:19.8 | plan to allow you to move your pass keys from one place to another. |
| 0:24.6 | All of that's coming up and a lot more next. |
| 0:27.0 | Unsecurity Now. |
| 0:28.0 | Podcasts you love. |
| 0:32.3 | From people you trust. |
| 0:34.0 | This is Twit. |
| 0:37.0 | This is Twit. |
| 0:40.0 | This is Security Now with Steve Gibson, episode 997, recorded Tuesday, October 22, |
| 0:47.0 | 2024. Credential Exchange Protocol. |
| 0:51.0 | It's time for Security Now, the show we cover the latest security news |
| 0:56.6 | privacy issues breach news exploits CVEs and science fiction. |
| 1:03.0 | Not necessarily in that order. |
| 1:05.0 | And a little bit of a health thrown in. |
| 1:08.0 | Just, yep, yep. |
| 1:10.0 | This guy right here, Mr. Steve Gibson of the Gibson Research Corporation. |
| 1:15.0 | Hey Steve. |
| 1:17.0 | We are at 997. |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.