SN 1080: Vulnerability Debt Repayment - Will Mythos Change Cybersecurity Forever?Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage.
• Cisco meets Mythos
• Can the aging CVE system survive AI
• Patch deployment latency in the AI age
• MSFT's official YellowKey BitLocker bypass mitigation
• Ubiquiti patches 5 serious vulnerabilities
• Drupal attacked by a PostgreSQL injection
• Microsoft terminates SMS as a second factor
• GitHub hacked - all of its source code exfiltrated
• Russia is using very old Western software
• Why to get a no-charge AI chatbot account
• New Sci-Fi on Netflix
• What we learn from Mozilla's use of Mythos
Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit
Sponsors:
guardsquare.com
doppel.com
cyberhoot.com/securitynow
trustedtech.team/securitynow365
XBOW.com
120|2T 44M
