New Episode of Security Now: Security Now 1020

In this episode of Security Now, Steve Gibson and Leo Laporte tackle several crucial topics related to cybersecurity. They begin by discussing a critical vulnerability in Apache Parquet, which received a CVSS score of 10.0, the highest possible level. This flaw allows attackers to execute code remotely on affected systems, which is extremely concerning. They emphasize the importance of immediately updating systems using Apache Parquet to protect against this threat. Another important point discussed is the massive phishing attempt conducted by the French government targeting 2.5 million middle and high school students. Although 210,000 students clicked on the phishing link, this figure represents only 8% of the targeted students, which is much lower than the 33% rate observed in corporate environments. This shows that younger generations are more aware of phishing risks than adults. The podcast also addresses a problematic feature of WordPress known as "must-use plugins." This feature allows plugins placed in a specific directory to be automatically activated without requiring administrator authentication. Unfortunately, this feature has become a target for attackers, who use it to inject malicious software. Experts recommend regularly checking the "must-use plugins" directory and removing any suspicious content. Another topic discussed is the data leak at Oracle, which refused to acknowledge a data breach despite strong evidence. This situation highlights the importance of transparency and accountability for companies in data security. The podcast also looks at Utah's new law, known as the "App Store Accountability Act," which imposes stricter age verification checks for mobile applications. This law could have significant implications for tech companies and users, particularly concerning the protection of minors online. Another point addressed is the impact of AI bots on open-source projects. These bots, seeking data to train their models, can overwhelm open-source project servers with excessive requests, leading to high bandwidth costs and service instabilities. Solutions like the Anubis project and Cloudflare's AI Labyrinth are discussed as ways to mitigate this impact. The podcast concludes with a discussion on the new requirement of "multi-perspective issuance corroboration" (MPIC) for certificate authorities. This requirement aims to strengthen domain ownership verification by performing validations from multiple geographic perspectives and distinct networks. This makes it much more difficult for attackers to compromise the domain validation process using BGP (Border Gateway Protocol) attacks. In summary, this episode of Security Now covers a range of crucial cybersecurity topics, providing valuable insights and practical recommendations for protecting against current threats.