Someone on the Facebook recovery effort has explained that a routine BGP update went wrong, which in turn locked out those with remote access who could reverse the mistake. Those who do have physical access do not have authorization on the servers. Catch-22.
GRC's forthcoming “ValiDrive” freeware is running and being tested by our terrific community. It IS finding bad, slow, buggy, error-prone and fraudulent USB drives. 👍 It's expected for release later this week. I'll announce it here when it's ready for everyone.
“ValiDrive”
New GRC Windows utility to quickly spot-check any USB mass storage drive for deliberate sizing fraud and errors:
Over the next day I'll be fleshing out its description page. But the Windows App is ready for the world now! 👍
Reports are that Facebook employees cannot enter their headquarters because their badges don’t work, and those inside are unable to enter various rooms because access is dependent upon obtaining authorization from remote Facebook servers.
Those who live by technology...
Announcing new freeware from GRC (by me): "InSpectre"
Quickly assess and verify any Windows platform -- hardware and software -- for Meltdown and Spectre mitigation function and capability (125kb with no "installation" nonsense.)
By popular demand... I am (briefly) pausing work on SpinRite v6.1 to create a new piece of GRC Freeware which will quickly and non-destructively check the terrain of any USB-connected mass storage drive for “fakery” - It will quickly spot “fake” or badly damaged drives.
OFFICIAL Win10 registry key to allow Win11 upgrading without TPM 2.0 =OR= CPU requirements:
“AllowUpgradesWithUnsupportedTPMOrCPU”
At: "HKEY_LOCAL_MACHINE\SYSTEM\Setup\MoSetup" create a REG_DWORD value with that name above. Set it to '1'.
Voila! Win11 setup will upgrade!!
The world's DNS servers are seeing 30 TIMES more traffic since DNS caches have drained for Facebook, Instagram and WhatsApp. Users are inadvertently pounding on them. (Cloudflare's 1 . 1 . 1 . 1 DNS server(s) are holding and remain speedy.)
Facebook may have "deplatformed" itself, along with Instagram and WhatsApp. Hope no one depends upon "Login with Facebook!" Whoopsie! Somehow, the BGP entries for Facebook's DNS resolvers have been withdrawn from the Internet's routing tables. Insider? Attack? Who knows. Wow.
Google just released a really well-produced, fun, visual, 15 to 19 minute YouTube video series “Hacking Google”. Videos are:
Operation Aurora,
Threat Analysis Group,
Detection & Response,
Red Team,
Bug Hunters,
Project Zero.
HIGHLY recommended:
"Leaving LastPass"
This week we discuss the many issues surrounding LastPass' disclosure that they did, in fact, allow all of their customer's partially-encrypted data to be stolen by unknown malicious actors, why it's time to say goodbye and what's next.
Only 5000 Iterations!
Direct confirmation from a decade-long LastPass user and Security Now! follower that when he checked just now, his LastPass vault was still set to 5000 iterations of PBKDF2, rather than the 100,100 that was set five years ago in 2018. Not cool, LastPass.
#COVID
ー19 / Thanks for all the well wishes, everyone. It appears that "patience" will be the main requirement. This thing is tenacious. Because it's truly novel, I think our bodies need much more than the typical time to mount a defense.
Meanwhile... there's been a noted global decrease in reports of teenage depression and poor self image. Mental health is on the rise. But fear not, BGP is sure to be restored soon. :-/
Merry Christmas All!! And, while I really didn't plan it this way, the first release of the long-awaited ReadSpeed Benchmark went public on Christmas Eve. You can see an overview, watch a video of it running (with my narration) then try it for yourself!
Buckle Up!
If you have access to Amazon Prime and enjoy Sci-Fi action movies, I can recommend Chris Pratt in “The Tomorrow War.” Non-stop action, fun, astonishing special effects (how'd they do those alien monsters?) and more. I can't imagine that it would disappoint!
:-( Security Researcher Dan Kaminsky died Saturday at age 42 of complications (ketoacidosis) from diabetes, which he had struggled with for years.
Security Now! researchers know of Dan's discovery of a critical weakness in the DNS servers at the time.
He will be missed.
“The rise and fall of ”
Security Now!
#978
show notes:
MSFT vs Recall backlash, Google's me-too, NYT breach, Apple pswd mgr, DJI in the sky, AI assist or coding?, Linux's CVE craze and a bad mistake Microsoft turned into a goldmine.
“The Mystery of CVE-2023-38606”
Security Now!
#955
show notes.
A quick SpinRite update and some customer feedback, Then a seriously deep dive into what can only reasonably be described as a deliberate backdoor that was engineered into the past 5 generations of Apple's silicon.
The OWASP Gothenburg, Sweden chapter created a terrific video of my presentation there 10 days ago:
This video FULLY demonstrates and EXPLAINS SQRL to anyone who is interested. Share it with other techies! :)
Danger Will Robinson!! Danger!!
A heads-up that Netflix released all of Season 2 of Lost in Space the day before Christmas. I haven't started into it yet since I JUST found out. Hope to make it last a few nights! :) Happy Holidays All!
Announcing “InControl”: GRC's latest Windows freebie which gives users control over Windows' out-of-control updating and upgrading. 82 kbytes of no-installation-needed x86 assembly language:
Clean & simple, anyone can use it to control Windows Update.
A Blast from the past! Leo and me together in 1998... and more!
I just updated GRC's old page of classic TechTV videos from WMV to MP4. We young once! <grin>
The video collection is here:
GRC's Shortcut of the week for Security Now episode
#905
:
This is a PowerShell script, runnable on any Windows machine, that will post-process a captured LastPass vault to show its owner everything that's visible without decryption. (Quite a lot!)
To =ALL= Security Now Listeners:
I'm currently listening to Alex Stamos on Wednesday's "This Week in Google." Alex has not let anyone get a word in edgewise because he has SO MUCH amazing information to share. Without reservation, I RECOMMEND listening to this. It's FANTASTIC!
GRC is DOWN HARD.
No idea what happened yet.
Everything appears to be fine at the data centers.
Incoming link is up, but no bandwidth appears to be incoming. Looks like a routing problem at Level3/Century Link end. I'm on it! :)
“Web Portal? Yes Please!”
Security Now
#963
show notes:
Nevada wants to ban E2EE for minors, IT pros have a tough job, Chrome gets an Edge, online services selling our info, LockBitten, another horrible web portal mistake, SpinRite 6.1 released & feedback
“When Hashes Collide”
Security Now!
#940
show notes:
The operation of hardware security modules, convenient file hashing, non-hysterical requirements for secure data erasure, a UNIX time countdown, a deep dive into the value of deliberate hash collisions.
GRC's (new) email system now allows Security Now! feedback email to be sent from known addresses to "securitynow" (@) .
Anyone may register their address at: and there is NO NEED to subscribe to any email lists if not interested.
“Microsoft's Head in the Clouds”
Security Now!
#974
show notes:
Fascinating insights from analyzing 3.4 million PINs, a backup plan for GPS, multiple Passkeys per website account, what happened with Microsoft's cloud security breach and what's the future?
“Minimum Viable Secure Product”
Security Now!
#969
show notes:
When should researchers keep quiet? Dangerous Internet secure message sites. The 0-Day for Pay market. Voyager 1. SpinRite v6.1 now selling, and an important industry initiative's new member.
Re: Today's Mega Twitter Hack:
I'll be on live with Jason Thursday morning at 11am Pacific to discuss everything we know about today's hack. See you there! :)
“Chat (out of) Control”
Security Now!
#971
show notes:
Stuxnet on steroids, Voyager 1 update, new features for Android & Thunderbird, China's new bans, Gentoo says no to AI, feedback, SpinRite and the EU's misguided legislation advances toward adoption.
“I've got problems with the WiFi”
We cannot play this during tomorrow's Security Now! podcast due to a conflict with YouTube. But if you haven't seen it, it's just SO perfect:
“Encrypting Client Hello”
Security Now!
#942
show notes:
An 9.8 RCE flaw in the world's
#1
eMail server, AI malware infiltration, Win11 passkeys, a SyncThing quickstart, targeting LastPass users, the difficulty of truly protecting TLS traffic from spying.
A shout out to
@StopForumSpam
. GRC's forums were drowning in forum spam, because forum spammers are people, typically in the Eastern bloc, who create temp GMAIL accounts and manually bypass all CAPTCHA challenges. But after adding StopForumSpam -- not a SINGLE fake registration!
“The Top 10 Cybersecurity Misconfigurations”
Security Now!
#943
show notes:
“ValiDrive” published. Is 23andMe lying? What's the growth in cyberattacks? Is Brave fading? Google tracking link embedding. Pixel 8 support. Feedback and a GREAT doc from NSA/CISA
“Morris The Second”
Security Now!
#966
show notes:
Voyager lives! (maybe). The WEB just turned 35 - What's its Dad think? A horrific consumer privacy violation. Lots of feedback. Will we be able to make generative AI models safe against deliberate abuse?
"GoFetch"
Security Now!
#967
show notes:
Apple vs DoJ, GM's privacy invasion, Super Sushi Samurai, no HomeKit routers, a domain name for private nets, can we control AI?, Telegram blocked again, Pwn2Own 2024 and the major Apple's M-series crypto attack.
Anyone seeking additional pain can now obtain the official Windows 11, directly from Microsoft.
(I would call it the "final" Windows 11 ... but who are we kidding?)
“Passkeys: A Shattered Dream?”
Security Now! show notes:
A stunning new UK law promises to change IoT security globally and immediately! Chrome's 3rd-party cookies, feedback and eMail, and an insider developer bemoans the failure of Passkey authentication.
“The Attack”
Security Now!
#982
show notes:
Entrust responds to Google's withdrawal of trust. Other CA's jump in. The Passkey Redaction Attack. OpenSSH and Port Knocking or failure blocking. The Internet dodged another bullet!
“Unforeseen Consequences”
Security Now!
#960
show notes:
CISA pushes SOHO router changes, a serious flaw in a Linux core lib, OpenSSL RIP?, Roskomnandzor!, proactive Passkey adoption, and what may be the unforeseen consequences of Google's cookie blocking?
“A Cautionary Tale”
Security Now!
#968
show notes:
All Linux users should update. 73 million AT&T users' data leaked online. New Signal & Telegram features. Russian IT exodus. Google's (non)incognito mode. A VERY worrisome discovery for the Linux community
“The Inside Tracks”
Security Now!
#956
show notes:
Why I believe the Apple backdoor was deliberate and known, how soft is today's cybersecurity?, 23andYou, cryptocurrency update, cyberwar insurance, not so Incognito, and interesting spinning drive data.
I watched the first episode of the new Start Trek “Strange New Worlds” last night. I cannot imagine that anyone who grew up with the original series or The Next Generation would not LOVE this as I do! It's REALLY spot on.
ArsTechnica's review nailed it:
“The End of Entrust Trust”
Security Now!
#981
show notes:
An urgent OpenSSH vulnerability!! Old bitcoins on the move. Voyager 1 update. A fabulous emailing system. DNS for version management. How one of the original certificate authorities totally blew it!
"Star Trek: Picard" Premieres Today.
It's annoying that it's "CBS All Access", so paid streaming. But just a heads-up for those who might have not caught the release date. :)
Anyone want to know the TRUTH about Windows 11 hardware compatibility requirements? Because this has always infuriated me, I'll be revisiting the issue on today's podcast/ Here's 63 seconds from last Wednesday's Windows Weekly podcast
#765
:
“A Large Language Model in Every Pot”
Security Now!
#977
show notes:
Simplest apps are better, GRC's 1st week with incoming email, who's been Pwned? More CA trouble. Remember ICQ? A perfect SciFi movie. And what might be Microsoft's true plan for Recall!?
“Article 45”
Security Now!
#947
show notes:
Microsoft's Azure key storage, 4 new 0-days in Exchange, another cyber mass-casualty event, CVSSv4, Google's WebDRM?, Bitwarden's Passkeys, SpinRite 6.1 fixes an SSD, and the EU goes off the rails (again)! <sigh>