Security Now with Steve Gibson and Leo Laporte

Sep 6th 2022

Security Now 887

Embedded AWS Credentials

TikTok leak, urgent Chrome patch, PyPI warning, Quantum Hype Bubble

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.
Category: Help & How To
  • Picture of the Week. 
  • Google’s (newest) Open Source Software Vulnerability Rewards Program. 
  • Did TikTok leak 2.05 BILLION User Records? 
  • An urgent Chrome update patches new 0-day flaw. 
  • Permission-less Browser Clipboard Write. 
  • Nearly 1/3 of the packages in PyPI trigger an automatic code execution upon download. 
  • A Quantum Hype Bubble? 
  • All of the BlackHat 2022 Presentation Slides PDFs. 
  • Csurf NPM library mistake. 
  • SpinRite. 
  • Closing The Loop. 
  • Sci-Fi Discovery: “The Silver Ships” 
  • Embedding AWS Credentials.

We invite you to read our show notes at

Download or subscribe to this show at

Get episodes ad-free with Club TWiT at

You can submit a question to Security Now! at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site:, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.