Security Now with Steve Gibson and Leo Laporte

Apr 5th 2022

Security Now 865

Port Knocking

Wyze Gets Spanked, FinFisher Bites the Dust, Spring4Shell, LAPSUS$ Update

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.
Category: Help & How To
  • Picture of the Week.
  • 0-Day Watch.
  • Spring Forward (Java: Spring4Shell)
  • QNAP and the OpenSSL DoS vulnerability.
  • Sophos has a 9.8.
  • CISA orders federal civilian agencies to patch the Sophos vulnerability.
  • Browser-in-the-browser.
  • The supply-chain attacks on NPM have been growing.
  • FinFisher bites the dust.
  • A LAPSUS$ in judgment.
  • Not so Wyze.
  • Closing The Loop.
  • Port Knocking.

We invite you to read our show notes at

Download or subscribe to this show at

Get episodes ad-free with Club TWiT at

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site:, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.