Security Now with Steve Gibson and Leo Laporte

Feb 9th 2021

Security Now 805

SCADA Scandal

Defender Thinks Chrome is Malware, Plex Media Servers in DDoS Attacks
Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 21:30 UTC.
Category: Help & How To

Defender thinks Chrome is malware, Plex Media Servers in DDoS attacks.

  • Picture of the Week.
  • Google has been busy with Chrome.
  • Google Chrome Heap Buffer Overflow Vulnerability Exploited.
  • A unique use of Chrome's “sync” feature for command & control and data exfiltration.
  • Defender thinks Chrome is Malware.
  • More Critical WordPress Plug-in Problems.
  • Plex Media servers SSDP protocol being used in DDoS attacks.
  • Three more NEW vulnerabilities discovered in SolarWinds’ software.
  • Closing the Loop.
  • SpinRite: “Discovering System’s Mass Storage Devices...”
  • SCADA Scandal: Hacker's attempts to adjust chemicals in Oldsmar water supply.

We invite you to read our show notes at

Download or subscribe to this show at

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site:, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.