Security Now with Steve Gibson and Leo Laporte

Sep 19th 2023

Security Now 940

When Hashes Collide

Secure-wipe best practices, browser identity segregation, bye bye Twitter (X)

Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.
Category: Help & How To
  • Last week's news about evidence of LastPass vault decryption targeting cryptocurrency keys, and the UK's backing down on its encryption monitoring legislation.
  • How hardware security modules (HSMs) allow cryptographic operations like code signing without exposing private keys.
  • Browser identity segregation using multiple profiles rather than separate browsers.
  • Requirements and best practices for securely wiping data from modern solid state drives.
  • A countdown clock for the 32-bit UNIX time rollover in the year 2038.
  • Steve's plan to move off Twitter and onto email lists for Security Now communication.
  • A deep dive into cryptographic hash collisions, using fewer hash bits, and balancing anonymity with statistical meaning.

Show Notes -

Download or subscribe to this show at

Get episodes ad-free with Club TWiT at

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site:, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.