Security Now (Audio)

Amazon is taking Perplexity AI to court over its agentic browser that shops on your behalf, raising urgent questions about who controls your online buying experience when bots do the heavy lifting.

• FFmpeg teaching assembly language for performance.
• The state of Nevada recovers after not paying ransom.
• A "rounding error" nets a clever attacker $128 million.
• Why would Chrome decide to start form-filling driver's licenses.
• T...

AI-powered web browsers are hitting the scene fast, but Steve and Leo unpack why these smart assistants could usher in an era of security chaos most users aren't ready for. Brace yourself for the wild risks, real-world scams, and the privacy questions no one else is asking.

• Secret radios discovered in Chinese-made busses.
• Edge & Chrome introduce LLM-based "scareware" blocking.
• A perfect example of what scareware blockin...

Just when you thought DNS cache poisoning was a thing of the past, Steve and Leo reveal why this 17-year-old bug is making a dramatic comeback—and why most DNS resolvers still can't manage high-quality random numbers after all this time.

• The unsuspected sucking power of a Linux-based robot vacuum.
• Russia to follow China's vulnerability reporting laws.
• A pair of Scattered Spider UK teen hackers arrested.
• Facebook,Instagram ...

Think your mouse is harmless? Steve and Leo uncover how modern optical mice might be secretly "listening" in, and reveal why satellite data pouring down on us is almost entirely unsecured.

• The long awaited lawsuit to block Texas SB2420.
• Embattled Texas SB2420 also impacts Google Play.
• At long last, NIST modernizes their password policy.
• Scattered LAPSUS$ Hunters demise was exaggerated.
• China claims that the NSA has been h...

Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire?

• The EU aborted their Chat Control vote knowing it would fail.
• Salesforce says it's not going to pay; customer data is released.
• Hackers claim Discord breach netted 70,000 government IDs.
• Microsoft to move Github to Azure. What could pos...

Google's new demand for developer registration could spell the end for open-source app stores, while Europe's controversial chat control vote threatens privacy for everyone—Steve and Leo break down what's at stake for devs and users alike.

• Qantas says no one can releak their stolen data.
• Brave's usage is up. But is it really 3 times faster.
• Next Tuesday the EU votes on "Chat Control".
• Microsoft formally launches a "Securit...

Cisco's routers just exposed more than two million networks thanks to a "security optional" SNMP setup that's being actively exploited—Steve and Leo break down why this is a worst-case scenario for the industry and how easily it could have been avoided.

• Gmail's spam filtering false-positive spree.
• iOS 26's Safari randomizes its fingerprint by default.
• Cisco's SNMP stands for "Security Not My Problem".
• Windows' "stuck" Exte...

• Consumer Reports on Windows 10 updates.
• Waste (not fraud or abuse) within DoD Cyberoperations.
• China's DeepSeek produces deliberately flawed code.
• WebAssembly v3.0 officially released.
• Firefox v143 updates and new features.
• Firefox for Android now offers DoH.
• A nearly terminal flaw in Microsoft's Entra ID.
• Chrome hits its 6th 0-day this year. Emergency update.
• DRAM (now DDR5) still vulnerable to RowHammer.
• SAMSUNG k...

Apple just rewrote the rules of device security with a chip-level upgrade that could wipe out most iPhone vulnerabilities overnight. Find out how "memory integrity enforcement" aims to make exploits a thing of the past—and why it took half a decade to pull off.

• Are Bitcoin ATMs anything more than scamming terminals.
• Ransomware hits the Uvalde school district and Jaguar.
• Did "Scattered LapSus Hunters" just throw in the towel...