SN 1012: Hiding School Cyberattacks - SparkCat, Decrypting ADP, AI Fuzzing• New "SparkCat" secret-stealing AI image scanner discovered in App and Play stores.
• The UK demands that Apple does the impossible: decrypting ADP cloud data.
• France moves forward on legislation to require backdoors to encryption.
• Firefox moves to 135 with a bunch of useful new features.
• The Five Eyes alliance publishes edge-device security guidance.
• Six NetGear routers contain CVSS 9.6 and 9.8 vulnerabilities.
• Sysinternals utilities allow malicious Windows DLL injection.
• Google removes restrictive do-gooder language from AI application policies.
• "AI Fuzzing" successfully jailbreaks the most powerful ChatGPT o3 model.
• Examining the well and deliberately hidden truth behind ransomware cyberattacks on U.S. K-12 schools
Show Notes - https://www.grc.com/sn/SN-1012-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit
Sponsors:
joindeleteme.com/twit promo code TWIT
canary.tools/twit - use code: TWIT
zscaler.com/security
uscloud.com
1password.com/securitynow
50
|
2T 41min
