New Episode of Security Now: Security Now 1032

In this episode of Security Now, Steve Gibson and Leo Laporte address several crucial topics related to cybersecurity and online privacy. The episode begins with a discussion on Apple's recent requirements for installing the Russian App Store, called Ru Store, on devices sold in Russia. This new law, which will come into effect in September 2025, also prohibits the blocking of third-party applications and restrictions on payment methods, which could have significant implications for Apple and app developers in Russia. Another important topic covered is the decision of the city of Lyon, France, to migrate from Windows to Linux. This initiative is part of a broader movement in Europe aimed at reducing dependence on American technologies and promoting digital sovereignty. Lyon will thus follow the example of other European cities like Copenhagen and Aarhus, which have already undertaken similar migrations. The episode also addresses the issue of programming language security. Steve Gibson emphasizes the importance of adopting memory-safe languages (MSL) to improve software security. Languages like Rust, Go, Java, C#, Swift, Kotlin, and Python are cited as examples of MSLs that can help prevent vulnerabilities related to memory management. Gibson mentions that organizations like the NSA and CISA have published guides highlighting the benefits of MSLs for software security. A crucial point of the episode is the discussion on the recently discovered critical vulnerabilities in Cisco equipment. Steve Gibson talks about two new vulnerabilities, CVE-2025-20-281 and CVE-2025-20-282, which allow remote code execution without authentication. These vulnerabilities are particularly concerning because they can be exploited by any attacker with access to the relevant API. Gibson severely criticizes Cisco for not implementing adequate security measures to protect these APIs, leading to massive infiltrations by Chinese actors. The episode also covers the implications of recent budget cuts and layoffs within U.S. government agencies, particularly the CISA. These cuts have weakened the agencies' ability to collaborate with critical infrastructure for cybersecurity, leading to an increase in cyberattacks and a decrease in incident preparedness. Experts fear that these reductions have compromised national security and the resilience of critical infrastructure. Another fascinating topic is the evasion of AI-based antivirus scanners. Steve Gibson discusses a new technique used by malware to escape detection by injecting instructions into the code analyzed by AI-based antivirus scanners. This technique, nicknamed the "These aren't the droids you're looking for" method, shows how sophisticated cybercriminals have become in their evasion attempts. The episode concludes with a discussion on browser fingerprinting, a technique used to track users online. Researchers recently published a study showing that fingerprinting is widely used for targeted advertising and user tracking, despite data protection regulations like GDPR and CCPA. The study results show that advertisers are willing to pay up to 40% more to display ads to known users, highlighting the economic importance of user tracking for websites. In conclusion, this episode of Security Now provides an in-depth look at the current challenges in cybersecurity and online privacy. It highlights the ongoing efforts of cybercriminals to circumvent security measures and the importance of adopting secure programming practices to protect systems and sensitive data.