New Episode of Security Now: Security Now 1031

In this episode of Security Now, Steve Gibson and Leo Laporte address several crucial topics related to cybersecurity, including vulnerabilities in state health portals, the adoption of Passkeys by Apple and Facebook, and Salt Typhoon attacks on telecommunications infrastructure. Data Leaks from State Health Portals: Leo and Steve discuss an alarming report revealing that health portals in several states, including Nevada, Maine, Massachusetts, and Rhode Island, share sensitive health information with companies like Google and LinkedIn via advertising trackers. These trackers capture details such as medication names, dosages, doctor and hospital names, raising major privacy concerns. Security experts emphasize that this practice is not only contrary to user expectations but also potentially illegal. The affected states quickly ended these practices after being informed, but this highlights the need for continuous monitoring and strict regulation to protect sensitive patient data. Adoption of Passkeys by Apple and Facebook: Steve Gibson explains the importance of Passkeys, a new authentication method that replaces traditional passwords with cryptographic keys. Apple recently announced features allowing the secure import and export of Passkeys between different password managers and platforms, a major advancement for interoperability. Facebook has also adopted Passkeys, demonstrating growing acceptance of this more secure technology. Passkeys offer better protection against phishing and password leaks, making online accounts more secure. Salt Typhoon Attacks: The episode then focuses on Salt Typhoon attacks, a Chinese hacker group that targeted several telecommunications providers in the United States and Canada. Salt Typhoon exploited vulnerabilities in Cisco equipment to infiltrate networks and spy on communications. Steve Gibson provides a detailed analysis of the techniques used by Salt Typhoon, including exploiting long-known but unpatched vulnerabilities and modifying equipment configurations to establish a persistent presence. He emphasizes that Cisco's policy of leaving vulnerabilities unpatched for years is a major flaw that enabled these attacks. Insights on Artificial Intelligence: Steve Gibson shares a deep reflection on the nature of artificial intelligence, particularly advanced language models like ChatGPT. He explains that these models are linguistic simulations of intelligent entities but do not possess real thought or consciousness. This distinction is crucial for understanding the limits and capabilities of AI. Steve illustrates this point with an example where ChatGPT provides an extremely detailed and precise answer to a technical question, demonstrating its ability to simulate human intelligence without actually possessing it. Practical Implications: The episode's discussions have several practical implications. Firstly, companies and governments must be more vigilant about protecting sensitive data and avoiding advertising tracking practices that compromise privacy. Secondly, the adoption of Passkeys by major companies like Apple and Facebook paves the way for more secure authentication, and users should consider migrating to this method to protect their accounts. Finally, hardware providers like Cisco must review their security policies to ensure vulnerabilities are patched quickly and equipment is secure by design. In conclusion, this episode of Security Now offers an in-depth analysis of current cybersecurity challenges and proposes practical solutions to improve data and system protection.