Is the U.S. on the verge of legalizing "hack back" missions, turning private companies into sanctioned cyber warriors? Steve and Leo unpack Google's plan for a cyber disruption unit and why the lines between defense and digital retaliation are suddenly blurring.

• My experience with 'X' vs email.


• Google TIG blackmailed to fire two security researchers.


• 1.1.1.1 DNS TLS certificate mis-issued.


• Artists blackmailed with threats of training AI on their art.


• Firefox extended end-of-life for Windows 7 to next March.


• Is the renewal of cybersecurity info sharing coming soon.


• Should security analysis be censored due to vibe-coding.


• UK versus Apple may not be settled after all.


• Another very serious supply chain attack.


• Can the software supply-chain ever be trustworthy.


• Why did BYTE Magazine die.


• What happens if Google and others go on the attack

Show Notes - https://www.grc.com/sn/SN-1042-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!

Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• uscloud.com


• canary.tools/twit - use code: TWIT


• bigid.com/securitynow


• zscaler.com/security


• expressvpn.com/securitynow