SN 1047: RediShell's CVSS 10.0 - The Rise of Mega Botnets

Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire?

• The EU aborted their Chat Control vote knowing it would fail.
• Salesforce says it's not going to pay; customer data is released.
• Hackers claim Discord breach netted 70,000 government IDs.
• Microsoft to move Github to Azure. What could possibly go wrong.
• New California law allows universal data sharing opt-out.
• OpenAI reports that it's blocking foreign abuse. Who cares.
• IE Mode refuses to die, so Microsoft is burying it deeper.
• The massive mess created by Texas legislation SB2420.
• The BreachForums website gets a makeover.
• 100,000 strong global botnet attacking U.S. RDP services.
• UI experts weigh in on Apple's iOS 26 user-interface.
• 330,000 publicly exposed REDIS servers are RCE-vulnerable

Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf

Hosts: Steve Gibson and Leo Laporte

Download or subscribe to Security Now at https://twit.tv/shows/security-now.

You can submit a question to Security Now at the GRC Feedback Page.

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Sponsors:

• zscaler.com/security
• expressvpn.com/securitynow
• vanta.com/SECURITYNOW
• canary.tools/twit - use code: TWIT
• bigid.com/securitynow