Security Now with Steve Gibson and Leo Laporte

Dec 23rd 2025

Security Now 1057

GhostPoster

Hosted by Steve Gibson, Leo Laporte

Free VPNs, Hidden Risks

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.
Subscribe on Apple Podcasts
Subscribe on Pocket Casts
Subscribe on Club TWiT
Subscribe on RSS
Subscribe on YouTube
Category: Help & How To

What if your smart TV and Firefox extensions were secretly hijacking your security and privacy? This episode reveals the jaw-dropping discovery of a massive TV botnet and the surprisingly clever malware lurking behind innocent browser icons.

  • North Korea's profitable fixation on cryptocurrency.
  • Amazon uncovers a cryptomining sneaking into customer clouds.
  • Insecure Docker API servers are also hosting cryptominers.
  • A new and truly massive SmartTV-based botnet discovery.
  • DNS Benchmark's 4th release.
  • Who, besides Let's Encrypt, offers free automated certs.
  • Some interesting listener feedback.
  • And how a PNG Icon was used to infect 50,000 Firefox users

Show Notes - https://www.grc.com/sn/SN-1057-Notes.pdf

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit

Sponsors

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join Club TWiT today!

You can submit a question to Security Now at the GRC Feedback Page.