SN 965: Passkeys vs. 2FA - Unhelpful CERT, VMware patch, Signal 7.0 Beta | Security Now (Audio)

This podcast episode explores various cybersecurity topics, including vulnerabilities in major enterprise websites, critical vulnerabilities in VMware products, Russian-backed cyberattacks, privacy improvements in Signal, Meta's plans for interoperability, ransomware attacks on healthcare companies, misconceptions about Telegram's encryption, potential liability shifts with email-only login systems, the importance of password managers, risks of browser extension ownership changes, the concept of Passkeys as a more secure authentication method, and the comparison between Passkeys and traditional login methods.

Outlines

Sign in to continue reading, translating and more.

Continue

SN 965: Passkeys vs. 2FA - Unhelpful CERT, VMware patch, Signal 7.0 Beta

Security Now (Audio)

Passkeys versus 2FA: A Deeper Dive

The Importance of Proper Grounding: A Tale of Two Dirt-Filled Bags

CISA's Disappointing Response to Website Vulnerability

VMware USB Virtualization Drivers Contain Critical Flaws, Prompting Immediate Patching

Microsoft's Friday PR Bombs, Russian Hackers' Weaponized Data, and China's Secret "Delete America" Directive

Signal's New Privacy Feature: Hiding Phone Numbers and Creating Usernames

Meta's Interoperability Plans: Signal Protocol and Third-Party Messaging

Meta's Interoperability Plan: Signal Protocol as the Gold Standard

Change Healthcare Ransomware Attack: A Devastating Blow to the U.S. Healthcare System

Black Cat Ransomware Group's Exit Scam: $22 Million Ransom Unpaid

Optum's $22 Million Loss and the Dangers of Healthcare Consolidation

Telegram's End-to-End Encryption: A Misconception

Email-Only Login: A Liability Shift for Websites?

Password Managers and the Liability of Storing User Passwords

Under New Management: Browser Extension Ownership Changes

Hover Zoom Plus: A Case Study in Extension Monetization

Passkeys: A Paradigm Shift in Authentication Security

Passkeys: A Comprehensive Guide to Superior Security and Convenience

Passkeys vs. One-Time Codes: A Comparison of Security

SN 965: Passkeys vs. 2FA - Unhelpful CERT, VMware patch, Signal 7.0 Beta

Security Now (Audio)

00:00Passkeys versus 2FA: A Deeper Dive

Passkeys versus 2FA: A Deeper Dive

07:11The Importance of Proper Grounding: A Tale of Two Dirt-Filled Bags

The Importance of Proper Grounding: A Tale of Two Dirt-Filled Bags

13:07CISA's Disappointing Response to Website Vulnerability

CISA's Disappointing Response to Website Vulnerability

20:57VMware USB Virtualization Drivers Contain Critical Flaws, Prompting Immediate Patching

VMware USB Virtualization Drivers Contain Critical Flaws, Prompting Immediate Patching

30:48Microsoft's Friday PR Bombs, Russian Hackers' Weaponized Data, and China's Secret "Delete America" Directive

Microsoft's Friday PR Bombs, Russian Hackers' Weaponized Data, and China's Secret "Delete America" Directive

38:22Signal's New Privacy Feature: Hiding Phone Numbers and Creating Usernames

Signal's New Privacy Feature: Hiding Phone Numbers and Creating Usernames

46:07Meta's Interoperability Plans: Signal Protocol and Third-Party Messaging

Meta's Interoperability Plans: Signal Protocol and Third-Party Messaging

53:14Meta's Interoperability Plan: Signal Protocol as the Gold Standard

Meta's Interoperability Plan: Signal Protocol as the Gold Standard

1:00:29Change Healthcare Ransomware Attack: A Devastating Blow to the U.S. Healthcare System

Change Healthcare Ransomware Attack: A Devastating Blow to the U.S. Healthcare System

1:06:15Black Cat Ransomware Group's Exit Scam: $22 Million Ransom Unpaid

Black Cat Ransomware Group's Exit Scam: $22 Million Ransom Unpaid

1:15:47Optum's $22 Million Loss and the Dangers of Healthcare Consolidation

Optum's $22 Million Loss and the Dangers of Healthcare Consolidation

1:23:29Telegram's End-to-End Encryption: A Misconception

Telegram's End-to-End Encryption: A Misconception

1:30:20Email-Only Login: A Liability Shift for Websites?

Email-Only Login: A Liability Shift for Websites?

1:37:39Password Managers and the Liability of Storing User Passwords

Password Managers and the Liability of Storing User Passwords

1:45:52Under New Management: Browser Extension Ownership Changes

Under New Management: Browser Extension Ownership Changes

1:54:47Hover Zoom Plus: A Case Study in Extension Monetization

Hover Zoom Plus: A Case Study in Extension Monetization

2:03:22Passkeys: A Paradigm Shift in Authentication Security

Passkeys: A Paradigm Shift in Authentication Security

2:11:17Passkeys: A Comprehensive Guide to Superior Security and Convenience

Passkeys: A Comprehensive Guide to Superior Security and Convenience

2:19:15Passkeys vs. One-Time Codes: A Comparison of Security

Passkeys vs. One-Time Codes: A Comparison of Security