• Chrome to actively refuse admin privileges.
• Android Messenger is getting manual key verification.
• Pwn2Own to add AI "pwning" as in-scope attack targets.
• AI has already been found to be replicating.
• Microsoft not killing off Office on Win10 after October.
• 23andMe's asset purchaser revealed.
• Many fun talking points thanks to our listeners.
• Steve's review of "Andor", season 2.
• What's been discovered inside the U.S. power grid

Show Notes - https://www.grc.com/sn/SN-1026-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• bigid.com/securitynow
• material.security
• joindeleteme.com/twit promo code TWIT
• bitwarden.com/twit
• drata.com/securitynow

• The state of Virginia passes an age-restriction law that has no chance.
• New Zealand also tries something similar, citing Australia's lead.
• A nasty Python package for Discord survived 3 years and 11K downloads.
• The FBI says it's a good idea to discard end-of-life consumer routers.
• What's in WhatsApp? Finding out was neither easy nor certain.
• The UK's Cyber Centre says AI promises to make things much worse.
• A bunch of great feedback from our great listeners, then:
• Is true end-to-end encryption possible when records must be retained?

Show Notes - https://www.grc.com/sn/SN-1025-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• threatlocker.com for Security Now
• uscloud.com
• hoxhunt.com/securitynow
• canary.tools/twit - use code: TWIT

• Microsoft to officially abandon passwords and support their deletion.
• Meta's RayBan smart glasses weaken their privacy terms.
• 30% of Microsoft code is now being written by AI.
• Google says prying Chrome from it will damage its security.
• Nearly 1,000 six-year-old eCommerce backdoors spring to life.
• eM Client moves to version 10.3
• A bunch of terrific listener feedback creates talking points.
• A little-known, insecure message archiving service comes to light.

Show Notes - https://www.grc.com/sn/sn-1024-notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• bitwarden.com/twit
• joindeleteme.com/twit promo code TWIT
• drata.com/securitynow
• material.security
• threatlocker.com/twit