Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords.

• Germany may soon outlaw ad blockers

• What's happening in the courts over AI

• The U.K. drops its demands of Apple

• New Microsoft 365 tenants being throttled

• Is Russia preparing to block Google Meet?

• Bluesky suspends its service in Mississippi

• How to throttle AI

• A tricky SSH-busting Go library

• Here comes the Linux desktop malware

• Apple just patched a doozy of a vulnerability

• A trivial Docker escape was found and fixed

• Why the recent browser 0-day clickjacking is really just whac-a-mole

Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!

Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• 1password.com/securitynow


• zscaler.com/security


• bigid.com/securitynow


• uscloud.com