Security Now 951

• How masked domain owners can be unmasked through ICANN's new Registration Data Request Service (RDRS)
• WhatsApp's addition of Secret Code for extra privacy protection in Chat Lock
• Iranian hackers exploited default passwords in programmable logic controllers at US water facilities
• Attempt by Montana to ban TikTok statewide was stalled by a federal judge ruling
• Over 1 billion Android devices now have RCS messaging enabled
• EU Cyber Resilience Act will improve security of Internet of Things devices sold in the EU
• Black Basta ransomware group has netted over $107 million since early 2022
• Google's new .meme top-level domain allowing meme-related web properties
• CISA’s Secure by Design initiative echoes security best practices frequently recommended on the podcast
• France plans to ban use of “foreign” end-to-end encrypted messaging apps like Telegram and require use of French app Olvid instead
• Concerns raised by industry experts Ivan Ristic and Ryan Hurst about EU's eIDAS 2.0 legislation undermining certificate authority trust

Show Notes - https://www.grc.com/sn/SN-951-Notes.pdf

Download or subscribe to this show at https://twit.tv/shows/security-now.

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

• Transcripts: Security Now 951 Transcript