A

It's time for Security Now. Steve Gibson is here. We have things to talk about, including the security of openclaw. I'll give you a hint. There is none. We'll also talk about using AI to code apps, the GDPR fine collection process, and the most powerful cyber component of the Midnight Hammer operation. We're talking about cyber offense. Offense with Steve Gibson. Next on Security Now.

B

Podcasts you love from people you trust.

A

This is Twit. This is Security now with Steve Gibson. Episode 1064, recorded Tuesday, February 10, 2026. Least privilege. It's time for Security now, the show where we talk about your security, your privacy, staying safe online, science fiction, vitamin D, Whatever suits this fellow right here, the man of the hour, Mr. Steve Gibson of GRC.com hi Steve.

B

Mostly things that concern our security and privacy and, you know, computer tech and things. Yeah, I had a. I got an email from someone saying, you know, I'm in a corporate IT environment and in charge of security, and you guys are like, talking about AI a lot. And I thought, well, that's true, but it's what's happening right now and it's writing code and we don't know about the, you know, the security implications of that. You know, your, your, your comment about, you know, a last week AI would never write a buffer overflow. While that's true, we also don't know that it would consider all of the tricky things that the bad guys can get up to. So, I mean, it's like, you know, there, there's a lot happening. So anyway, I just wanted to assure people. I mean, I've got some conversation about AI this week, but, you know, we always end up coming back to our central theme. You know, for a while there, we were talking about ransomware all the time. Well, turned out to be really important. You know, I mean, it was what was happening. And then I, I too began to feel like, okay, we gotta, like, what's, what's the point of yet another ransomware attack Conversation.

A

We do. We have an AI show, Intelligent Machines on Wednesdays that is all about AI. But honestly, security and AI go hand in hand. There are a lot of security issues around.

B

In fact, we're going to talk about whatever that claw thing was that happened. Open.

A

Claw.

B

Claw.

A

I had it installed over here. I woke up in the middle of the night in a cold sweat.

B

I heard that you backed off and I deleted it. I was glad because. Yeah. Although again, this stuff is moving so fast. It's fun to like, be.

A

You want to be on the bleeding that's why they call it the bleeding edge, right?

B

Because it can cut you and we heal. So you know, maybe a few stitches are needed but you know, it'd be okay. We're gonna this the day's title is Least Privilege and in writing about something else, A second insider sourced breach at Coinbase, I realized that there was a bigger issue it was an example of and that it could be extended all the way out to something as broad and general as as least privilege and that many of the things we've been talking about fall within this umbrella. In fact our talk next month, Leo at ThreatLocker is going to is it you know, least privilege is the umbrella that so much that encompasses so much of this. So we're going to dig into that in some detail. But first we I ran across a piece I loved about the EU's GDPR fine collection and how's how that's going. Also some interesting pieces about Western democracies beginning to get very serious about offensive I don't know if you call it cybercrime if it's legal cyber offensive operations. So we have some conversation about that and also some things that weren't mentioned before about the Midnight Hammer operation that the U.S. launched and the cyber component of that that speaking of offensive cyber operations, also an interesting little piece quickly about Open AI's attempt to shut down GPT4O and the the pushback that they've had about that CISA ordering government agencies to unplug end of support devices.

A

Yay.

B

And we're going to take a look at the details there. A listener provided some information about my annoyance that I mentioned last week about how Windows keeps like after any major update like wants me to set up backup again and I was you know grumbling about that. We have a solution also I just wanted to do did want to touch on Open Claw this the the safety side of it and what it means also today but for the future because I don't you know, nothing we have today what we're going to have tomorrow. Also we have another listener report of a an of AI coded app and their feedback about that. And then we're going to look at this Coinbase breach and what it means and what we can do about it. So and of course a fun picture of the week. So yeah, I think for podcast number one 64 for February 10th Coinbase did.

A

You you won't watch the super bowl probably I'm thinking not a football fan probably.

B

No. In fact one of I got a piece of email from one of our listeners who said, steve, you know, I'm a nerd. I've. I've always been a nerd. He said, but when I received your email for security now, I think it was toward the end of the first quarter of Super Bowl, I thought, okay, you have out nerded me.

A

I think that's the opposite. If you're a sports fan, you may less of a nerd. That disqualifies you slightly. Coinbase's ad was basically a karaoke. It was just lyrics of a song that everybody knew and it was actually quite clever because they. I think they realized that people would be watching it and they'd hear the music and they'd see the lyrics and no one could resist starting to sing. And the Coinbase president CEO said, we know that nobody sees the ads. They're watching this party, the super bowl, they're eating, they're whatever, doing the ads. So they're not really paying attention. But if, but he thought if everybody starts singing to this ad, everybody will go, what's going on? And they'll see the ad. And apparently it was one of the most successful ads. The most successful ad was for a company bought by crypto.com, another crypto company that touted their new website, which they spent $70 million for. The URL for AI dot com. Oh. And it. Basically you would go there and you gave them your email address. So I was, I was not going to do that. They have. I mean, they don't have a product. It's just. I don't know what it was. But the funny thing is the site immediately went down. They got so much response. It was probably the most successful ad at the super bowl that their site was dead for like half an hour. Just dead. Can you imagine spending that much money? And then.

B

Well, you still got AI.com, but.

A

Yeah, you got. You still got that. And you spent $8 million at least on the super bowl ad.

B

Yeah. I wonder what their provider is. I mean, like, I would imagine Cloudflare could have. You thought so, you know, I mean, my little pokey site would just, you know, you've. You look at it sideways and it, it saturates its bandwidth.

A

But they, they DDoS themselves for sure.

B

Wow.

A

I thought at first I went there, I thought, well, I know it's Crypto. Maybe my, my DNS blockers blocking it. But Lisa couldn't get on there. Then we tried our cell phone, we couldn't get on. And now I saw everybody. No, no, it's there now, but we saw on Reddit Everybody's complaining. I think this looks like Cloudflare Gateway timeout. Is that. Isn't that. Isn't that a Cloudflare error message? I don't know. This is what everybody was getting. Yeah. See? Cloudflare working.

B

Definitely.

A

Browser working. Cloud flare working.

B

Oh, yeah, yeah, yeah. Right, right.

A

Whoopsie. Whoopsies. That's a lot of money to spend for a dead website. Wow.

B

So, yes, I did hear that Anthropic was going to do an ad that was poking at Open AI.

A

Poking fun. Open AI. Which made Sam hopping mad o over.

B

The coming advertising enablement. Oh, it is really?

A

Oh, yeah. But only on the unpaid account. If you have a paid account. Okay. Which I think that's fine.

B

I do too. I have absolutely. I'm sometimes. Because it's maintaining a record of everything. Sometimes I want to come in anonymously without any big context. And so I will. I'll use a non logged in instance of OpenAI. Just because I just want to kind of get a clean appraisal from. From the.

A

I'm going to have to do that to see what those ads look like because that will be interesting. I think OpenAI's ad was quite good, in fact.

B

Anthropic or Open AI.

A

OpenAI had an ad. Oh, they all had. Oh, oh. OpenAI's ad was playing off of Nerds and they had a kid reading Isaac Asimov. I mean, it was a really. That'd be one to watch. I know you didn't see any of these, but that would be one to watch. Just because I felt like as a nerd, I felt pretty validated as a kid working on soldering together a motherboard and stuff. And it was really about like tech. We're excited about tech, so I liked that. I thought that was pretty.

B

There are like compendiums of the super bowl ads.

A

Oh, absolutely. Right, Absolutely. I know that because my son was in the Hellman's mayonnaise ad and I want for. For, for literally half a second and I had to. Had to go to YouTube to watch that over and over and over.

B

There's Hank.

A

Let's. Speaking of ads, should we do an.

B

Ad and then I think we should kick off with one, if you'll pardon the choice of words. And. And then. And then we'll take a look at our picture of the week.

A

You got it. Coming up in just a bit. You're watching Security now, our show today, brought to you by Zscaler. Zscaler, the world's largest cloud security platform. And you know, when you talk about least privilege and you talk about AI. You're talking about zscaler. They use Zero trust to protect you as you use AI and to protect you against bad guys who are using AI. The potential rewards of AI in your business, obviously nowadays too great to ignore. But so are the risks. And the risks, external and internal, like the loss of sensitive data attacks against enterprise managed AI. And of course, generative AI increases opportunities for threat actors, helping them to rapidly create phishing lures to write malicious code to automate data extraction. There were 1.3 million instances of Social Security numbers leaked through the legitimate use of AI applications. You know, it's hard to stop in your business. ChatGPT and Microsoft Copilot saw nearly 3.2 million data violations last year. It's time to rethink your organization's safe use of public and private AI. But you can do that with zscaler. Check out what Siva, the director of security and infrastructure at zwora, says about using zscaler to prevent AI attacks. Watch. With Zscaler, being in line in a security protection strategy helps us monitor all the traffic. So even if a bad actor were to use AI, because we have tight security framework around our endpoint, helps us proactively prevent that activity from happening. AI is tremendous in terms of its opportunities, but it also brings in challenges. We're confident that Zscaler is going to help us ensure that we're not slowed down by security challenges, but continue to take advantage of all the advancements. Thank you, Siva. With Zscaler Zero Trust plus AI, you can safely adopt generative AI and private AI to boost productivity across your business. Their Zero trust architecture plus AI helps you reduce the risks of AI related data loss and protects against AI attacks to guarantee greater productivity and compliance. You can find out more@Zscaler.com security that's Zscaler.com security We thank him so much for supporting Steve and security. Now. Now I'm ready with the picture of the week, Steve.

B

Okay, so I at risk of overusing the term Yankee ingenuity, which we used last week with the gas cap lock, you know, the, the sliding door lock. Today we have the winner of the Yankee Ingenuity competition.

A

All right, I'm going to scroll up. For the first time, I haven't seen this one.

B

This one pretty much takes it.

A

Okay, I really have to think about this one. Oh, I get it.

B

It's got to be a little visually parsed. So. So we have a two handles on cat on facing cabinet doors and the Challenge posed to this Yankee is.

A

I.

B

Want to lock these so that they can't be opened. But the padlock I have is just a small little standard U shaped hasp padlock. Won't get the job done. So looking around, what do I have that I could combine with this? Now if you had a chain, then it's no, no problem. Right. You just loop the chain through the handles and then put the padlock through successive, you know, both sides of the chain. And now it's locked. Everyone has seen that happen on gates everywhere.

A

But here's an office somewhere you have to use office supplies. Okay.

B

Yes. And hopefully you don't have any chains. We don't want you to have any chains in your office. That would be worrisome. So anyway, stapler to do it. No, can't see how a stapler would do it.

A

That's good though.

B

And you can't use like paper dolls because those could be easily torn.

A

Posted notes aren't going to do it.

B

No, no, no. Not sticky enough. So this, this industrious individual figured out how to stick a pair of scissors through the both handles essentially and lock one side such that this thing's not coming apart. And I mean, I've spent some time looking at it. Like could you put the padlock between the handle side loops? No. Because then you could kind of slide the other one apart. This is very clever. Someone said, well, if you had a screwdriver, but I don't see a slot on these scissors where you could use a screwdriver. Maybe if you had a pair of pliers and you could grab the pivot of this, of the screwdriver of the scissors and unscrew them.

A

Well, but you could always tear the handles off the cabinet. Yeah.

B

And if you had a hacksaw you could, you know, but the point here.

A

Is not impervious to all kinetic attacks.

B

No. Or a loose nuke, that would do the job too. But here we've, we've got anyways, just.

A

Something clever because you can very clever slide this. So maybe you'd be tempted to slide the scissors so that the hand, it's released from the handles, but you can't slide it far enough because the scissors around the other hand. This is actually quite clever. Neither side slide far enough to open it up.

B

Yep. And you can't open, you can't spread the scissors open because they're being kept closed by the hasp of the padlock. No. It's clean and simple and I think it's very elegant. So I'm Happy to give this person the award. Okay, so when is a fine not a fine? And the answer to that little question is when you don't pay it. Oh, because, you know, just an intent, I guess, at that point. This was a piece of news, actually, that I came across last week, but. And even then it was a couple weeks old, but I wasn't able to fit it into last week's podcast. I held onto it for. For today because I just. I found it so interesting. The numbers are somewhat astonishing. It turns out that levying a fine for some perceived misconduct and collecting the fine for said misconduct are two very different things. The headline in the Irish Times reads, data Protection Commission owed. Get this, more than 4 billion euros in fines. In other words, people aren't paying them. The tagline notes that levies have either not been collected or are subject to legal challenge. Because, of course, we challenge everything these days. So here's what we learned from the. From the Irish Times. They wrote, the Data protection commission, the DPC, is owed more than 4 billion. Maybe I said dollars, I meant euros. 4 billion euros in fines that have not been collected or may be subject to legal challenge. The DPC hit companies, including firms in big tech, with more than 530 million euros just last year, so just in 2025. However, of that 530 million euros, only 125,000 of that has been collected so far. And that's actually a much higher percentage than we get if we go a little bit back further in history. And that's according to data that was released under the Freedom of Information laws in the EU. Over the past six years, the Commission has levied, they wrote an incredible 4.04 billion euros in fines, mostly against multinational technology companies. You know, big ones, we all know their names. However, of that total, right, 4.04 billion euros. 4.02 billion remains uncollected. Only 20 million euros of 4.04 billion euros has been paid so far. In 2024, 653 million euros worth of fines was levied of. Of which €582,000 was paid. So again, a small piece of that. The year before that, the DPC imposed fines worth 1.55 billion euros, yet just 815,000 were collected. Still, that's a larger percentage than. Than overall. During 2022, the commission decided on fines with a value of over 1 billion. 17 million of that were paid. So they're not having any luck collecting this. They said that five years ago, in 2021, companies were ordered to pay 225,800,000 was collected and in 2020. So now we're back six years when just when all back then, €785,000 were imposed, less than 10% was paved. So the Data Pro, the Data Protection Commission, said the majority of these cases were currently the subject of appeals. So, right, you get a fine, you appeal it, you don't want to pay it, and it's, you know, better to pay it tomorrow than to pay it today. The DPC said that under legislation, fines could not be collected until they were confirmed in a court and an appeals immediately stops that. They said where an entity subject to a fine decides to appeal, the DPC is precluded in law from collecting the fine until the appeal has been heard. The Commission said that many of the fines hinged on a key case involving WhatsApp, which is before the Court of Justice in the EU. Asked whether any of the fines were considered uncollectible for any reason, the DPC said that none were in that, that were, none were classified that way. So, you know, we're often talking here about the monetary consequences of some corporate behavior for which a company will be fined, often breathtakingly large sums of money if they don't do what the government in question says you have to do. But as I said or noted at the top, a fine that's not paid is more of a threat, right? And that costs the company nothing to have them being threatened with a fine, even if there's a number value attached to it. It appears from the accounting over the past six years that all any company needs to do is challenge and appeal the validity of the fine, which immediately stops it, prevents it from taking effect, while then they let the appeal languish in the EU's courts. As I said, better to pay it tomorrow than to pay it today if they, even if they ever pay it. Since the European Commission noted that many of the fines hinged on a key case involving WhatsApp. I tracked that down because I thought, okay, what, what? The fine in question was initially in the amount of 50 million euros, which was imposed five years ago in 2021 by the Irish Data Protection Commission for alleged GDPR violations. And those were related to how WhatsApp failed to inform its users about the processing of their personal data. And I have no doubt that we talked about at the time, this is one of those things like, oh, look, they're being bad, they're being fined. Turns out that they did, you know, oops, wait, we're going to challenge that. Interestingly, upon the imposition of that 50 million euro fine the year by the, by the Irish Data Protection Commission, the European Data Protection board, that's the EDPB, intervened in this 50 million euro and directed the Irish authority to increase the fine amount to 225 Euros again. WhatsApp, Meta immediately appealed that decision and is now taking the case up through European Union courts where it currently remains undecided. So, and everybody else is saying, wait, you know, if, why should we be paying a fine if Meta isn't? And that one's five years ago. So we're going to wait to see how that turns out. And on that basis, they're all, they've all appealed and everything's jammed up. Anyway. I thought it was interesting to note that of the 4.04 billion euros in fines which have been imposed so far, only 20 million have actually been paid. Wow. Western democracies are increasingly embracing the concept of offensive cyber actions and are updating their national legal frameworks to legalize future options. I've talked about this last two weeks, right? First it was Germany and then it was Denmark that were both wanting to. To like, formally. Oh no, Ireland formally make that like what they wanted to do legal, like installing what we would consider spyware into the phones of their citizenry and perhaps others. So I want to share that opening editorial from Friday's Risky Business News, which nicely explains what's going on. Their opening headline was Denmark. That's why I was thinking of Denmark. Denmark recruits hackers for offensive cyber operations. And they write, denmark's military intelligence service has launched a campaign to recruit cybersecurity specialists. We would call them hackers, probably for. Because you'll see there the qualifications are a little sketchy. Recruit cybersecurity specialists for offensive cyber operations. The recruits will work, quote, to compromise the opponent's networks and obtain information for the benefit of Denmark's security, unquote. According to a press release last week by the DDIs, which is the Danish Defense Intelligence Service, new recruits will go through a five month training course at the agency's hacker academy. The DDIS says it's only interested in the applicant's skills. There are no special conditions for joining, such as age or education. While the intelligence agencies are always recruiting, this particular announcement comes at a crucial point, both because of the Greenland pressure point, but also because of a general shift towards offensive cyber operations among democratic states. And so this is a big deal, right, that now we're beginning to see cyber going on the offense. Offensive cyber operations among democratic states. They wrote Countries like Canada, Germany, Finland, France, Japan, the Netherlands, Poland and Sweden have or are updating their legal frameworks to account for offensive cyber operations. According to a recent report, the states are creating new agencies for offensive cyber or recruiting more cyber personnel for the new objectives. Most of these expansions are direct result of Russia's invasion of Ukraine and the role offensive cyber operations have played before and during the conflict. Lawmakers are also getting annoyed with the increasing aggressiveness of cybercrime and influence operations that are constantly targeting their own citizenry. So no, it's no longer taking it passively, right? It's like, we're gonna fight back, everybody else is, so why can't we? They wrote. Over the past five years, we've also seen U. S Cyber Command and the NSA successfully tackle some cybercrime and disinfo farms when they crossed some lines. Something that's making other states take notice and embrace a so called defend forward approach. Right, we're not going to call it offensive, we're going to call it defending forward. While the US has conducted more offensive cyber operations than any other Western democracy even it is considering an expansion. With the Trump administration pushing Congress to let Cyber Command go on the offensive more often with fewer rules and restrictions, the current administration is also terrified. This is what this, this reporter wrote. Terrified of China's massive cyber ecosystem, which is conducting cyber espionage at industrial scale. Well, that we know from our own reporting and experiences. Recent backroom discussions have raised the possibility of the US tapping into its huge private contracting ecosystem as China does, to augment some of its offensive cyber capabilities. The general idea is to task contractors with handling smaller jobs targeting cybercrime infrastructure while government agencies handle the more sensitive operations. Okay, so as they say, the gloves are finally coming off and you know, cyber is generally going on the offensive or at least developing. I'm surely obviously still defensive. Right. We need a strong defense, but, and presumably this has been going on in the dark by, you know, offensively sort of under wraps for some time. We noted that both Germany and Ireland are at work revising their nation's legal frameworks to permit their intelligence and law enforcement agencies to become far more proactive in monitoring the cyber environment, right up to the point and including legalizing the installation of spyware. We know that the UK has been headed in the same direction as well. And now we see that similar changes are being reflected in in updates to national military posture and capabilities. So the world is changing and it is up arming on the cyber front.

A

Leo, what's the argument? Pro and con I mean, you know, maybe it's simplistic of me, but I think of like the bully. Like if you're, if, if you're a parent of a kid, some parents say when the bully comes at you, you, you punch them hard in the nose.

B

The only way to teach him a lesson.

A

Right. And then some parents say that's a bad idea. Go find a grown up and let them handle the problem. I think it's not quite like that.

B

I think the counter argument to cyber is that you could unintentionally cause greater harm than you intend. It is a, it is a somewhat blunt tool. So, you know, if you, if you inadvertently shut down a hospital's electrical and their backup supplies failed and a bunch of people died as a consequence, I mean, that would not be good.

A

No.

B

And, and you really don't have, as I said, exacting control over what you're doing. So, so it, it's a little bit blunt. It's, you know, the, when, when, when a bomb goes off, you may have targeted a certain building, but collateral damage is the part two.

A

Yeah, yeah.

B

And so it's, there's also the issue of escalation.

A

I mean, we're all vulnerable. There's this kind of mutually assured destruction philosophy. Like I won't screw with you if you don't screw with me.

B

Yeah, we, we've, we've. I think that one of the reasons that it's sort of been allowed to go on in the, in the dark of night is that it isn't, as they say, kinetic. Right. Kinetic is the term for, for something physical in the real world that, that happens. Cyber is sort of like, well, it's, well, you know, they had a, have a, an outage over here. Oh, darn. And so they couldn't connect their network for a while. You know, it's, it's, you know, but nobody died. The problem is the world has become increasingly dependent upon networking. You know, it, it. Well, actually this takes us right into the two recent military actions of the us. We're half an hour in. Let's take a break.

A

Okay.

B

And we're going to look at the US's. Because something I didn't realize we had done after the fact seems obvious, but we'll talk about that in a second. Midnight Hammer.

A

Operation Midnight Hammer.

B

Yeah. And how names for these.

A

Yeah, all right, we'll talk about that in just a second. You're watching Security now with Steve Gibson or probably listening. Some of you watch. We do this show every Tuesday. I hope you'll be here Every Tuesday. There's always something to learn. This episode of Security now is brought to you by Hawks Hunt. As a security leader, you're getting paid to protect your company against cyber attacks. But it's getting harder with more cyber attacks than ever. And phishing emails these days generated with AI Legacy one size fits all awareness programs really don't stand a chance. You need your team to know what to click and what not to click. But you know, programs that send, you know, at most four generic trainings a year aren't going to get the job done. Most employees just, you know, ignore them or suffer through them without learning anything. And then when somebody actually clicks on, you know, a trap on a fake email, that's, you know, to see if they're paying attention and they click on it, then they're forced into embarrassing training programs that feel more like punishment. And that is not a good way to learn. People don't learn when they're being punished. This is why more and more organizations are using Hox Hunt. Hox Hunt goes beyond traditional security. Awareness actually changes behaviors. They do it by gamifying it. Look, we know now a lot about what makes things fun, how to keep people engaged. And hawkshunt's using that technology to train your team, rewarding good clicks and coaching away the bad clicks. As an example, whenever an employee suspects an email might be a scam, click the button and hox Hunt will tell them instantly, saying, hey, you got it, Congratulations. They get a dopamine rush and they get rewarded. It teaches your people to click, learn and protect your company. As for your deal, it's great for admins. Hox Hunt makes it easy to automatically deliver phishing simulations. And you could do it in every way, which you need to now email Slack teams. You can use AI just like the bad guys are to mimic the latest real world attacks. You could personalize the simulations to each employee based on department location and more. And you better believe the bad guys are doing that too. While instant micro trainings solidify understand. Not big long quarterly trainings, but, you know, quick little hits solidify the understanding drive lasting, safe behaviors people actually learn. And as I said, this is gamified. You can trigger gamified security awareness training that awards employees with stars and badges. It boosts completion rates, it ensures compliance and people love it. And when they're enjoying it, when they're, they'll learn better, right? You could choose from a huge library of customizable training packages. As I said, you could generate your own with AI. Hoxhunt has everything you need to write effective security training in one platform. It's easy to measurably reduce your human cyber risk at scale and that is really important. You don't have to take my word for it. Over 3,000 user reviews on G2 make Hox Hunt the top rated security training platform for the enterprise. They win Winning easiest to use in best results. Recognized as customers choice by Gartner and used by thousands of companies like Qualcomm, AES, Nokia to train millions of employees all over the globe. Visit hoxhunt.com securitynow to learn why modern secure companies are making the switch to Hawkshunt. That's hawkshunt.com securitynow h o x H u n T Like Fox Hunt with an H instead of an F Hawkshunt.com security now. We thank him so much for supporting Security now and the important work Steve's doing to help protect you and your company.

B

Steve so speaking of up arming on the cyber front, the Record exclusively reported last Wednesday on February 4 that a highly targeted cyber strike by US Cyber Command, timed to coincide with the United States airstrikes on Iran's three nuclear enrichment facilities last June completely prevented Iran from launching its surface to air missiles at U. S Warplanes that had entered Iranian airspace. Not a single missile got off the ground. The Record cited this as another example of the United States growing comfort with the deployment of cyber weapons in warfare, according to one individual familiar with the matter, who like others spoke on the condition of anonymity to discuss sensitive information. They said, quote, military systems often rely on a complex series of components all working correctly. In other words, they're, you know, a little bit fragile, he said. A vulnerable, I'm sorry, a vulnerability or weakness at any point can be used to disrupt the entire system. In hitting a so called aim point, a mapped node on a computer network such as a router, a server or some other peripheral device. US Operators enabled by intelligence from the NSA bypassed what would have been a more difficult task of breaking into a military system located at one or all of the fortified nuclear facilities. So we don't know any details, but there seemed to be some common point of weakness that they shared, referring to the quartet of Iran, China, Russia and North Korea. Another official said going upstream can be extraordinarily hard, especially against one of our big four adversaries. You need to find their Achilles heel. None of the officials would specify what kind of device was attacked at the request of sources recorded future news, withheld certain details, that is this reporting withheld certain details about the cyber attack due to national security concerns. So they managed to obtain some information and chose not to report it. A command spokesperson said in a statement without elaborating, quote, U.S. cyber Command was proud to support Operation Midnight Hammer and is fully equipped to execute the orders of the Commander in Chief and the Secretary of War at any time and in any place, unquote. The command received similar kudos last month after it conducted cyber operations that officials say knocked out power to Venezuela's capital and disrupted their air defense radar as well as handheld radios as part of the mission to capture President Nicolas Maduro. General Dan Kane, the chairman of the Joint Chiefs of Staff, publicly lauded Cyber Command's contribution during a press conference at Mar a Lago. He said that Cyber Command and others, quote, began layering different effects, unquote, on Venezuela as commandos approached in helicopters. In order to create a pathway was the phrase he used for them. Army Lt. Gen. William Hartman, the acting chief of the command and the nsa, recently told a Senate subcommittee, quote, I would tell you that not just with operation Absolute Resolve in Venezuela at Midnight Hammer, which of course was Iran, but also in a number of other operations, we've really graduated to the point where we're treating a cyber capability just like we would a kinetic capability, not sprinkling cyber on, meaning it's a, it's a, you know, frontline aspect of the effort. Air Force Brigadier General Ryan Messer, Deputy General for Global opera Global Operations on the Joint Staff, noted that Kane has put and, quote, emphasis on not just traditional kinetic effects, but the role non kinetic effects play in all of our global operations, especially cyber. He said that over the last six months, the Joint Staff has developed a, quote, non kinetic effects cell that is, quote, designed to integrate, coordinate and synchronize all of our non kinetics into the planning and then, of course, the execution of any operation globally. The reality, still quoting him, is that we've now pulled cyber operators to the forefront, unquote. So, according to Erica Longren and an adjutant fellow at the foundation for Defense for Defense of Democracies center on Cyber and Technology Innovation, Iran and Venezuela suggest that, quote, ideal use cases for cyber operations as enablers of conventional military operations are what we're seeing. Although both of these operations reflect the routinization of the use of cyber capabilities during military operations, and we should expect to see more of these in the future. Erica said, in my view, this is a good thing because it suggests we're moving beyond seeing cyber as a unique, exquisite and dangerous capability, unquote. Now, okay. As our listeners know, in reaction to the more or less continuous reporting we constantly cover over cyber attacks from Chinese state sponsored actors and North Korean same state sponsored groups against U. S infrastructure, I've been vocally worrying about whether the U. S would be able to give as well as it gets. It appears that until recently, you know, we've just been keeping our powder dry over here. But we've had the capability. If we're going to conduct aggressive offensive military operations, as it appears we are going to under our current administration, then I vote for not losing any of our frontline expeditionary military personnel in the process. If we have the cyber capability to ground Iran's counter strike capability, while we would otherwise be vulnerable to, you know, as we're flying over the country, as it appears we're able to do, then I guess I'm going to stop wondering and worrying whether we might be defenseless. Doesn't look like we are. Of course, that said, we will have certainly also removed any doubt about that from now from the rest of the world. Right. If there may have been any doubt among our allies and adversaries about what we're able to do because we hadn't previously, that doubt's gone. The U.S. you know, now has a well proven ability to launch clean zero loss military actions, which I would imagine puts a chill in our adversaries military planning. And unfortunately since Greenland was briefly mentioned in the previous reporting about Denmark, it might also put a chill in the military planning of some of our allies. It also occurred to me that this may have been another reason for Iran's recent disconnection from the Internet. Right. You know, for their leadership's determination to track down and remove all remaining space based Internet connections and apparently for their plans to remain disconnected. I would imagine there must have been some very unhappy Iranian military personnel when they pressed their own launch button only to discover that their air defenses had been incapacitated during the US's overfly and its attack. You know, our attack on their three nuclear enrichment facilities last June. That western Internet sure can be pesky. The US has also been has been expressing its displeasure with the course of recent protests in Iran and has been amassing military assets in the region. So you know, if the Iranian government might be concerned with another coordinated U. S Cyber plus conventional action, then there would be additional reason to remain disconnected from the lo from the global Internet. Interestingly.

A

Like the Battlestar Galactica. Right. Just remember what happened with the Cylons.

B

Okay.

A

I'm just saying.

B

That's right. So the next thing I wanted to share is not about security or privacy. It's just about AI and not even about AI and code. It's about AI and people. I just wanted to share it because it was very clear from our early discussions back, Leo, when you and I were first talking about ChatGPT and just our mouths were hanging open over what it was, it was very clear that something like what has happened was bound to happen. You know, after I complained here about how annoyingly obsequious Chat GPT was, a listener, as I mentioned, pointed me to the configuration options where all of that bowing and scraping and oh, what a wonderfully well phrased and complete question you have asked. I mean, give me a break. All that crap. All that crap can be turned off. The problem was that not everyone wanted it turned off, right? Many appear to have wanted it turned up. TechCrunch's headline last Friday was the backslash over OpenAI's decision to to retire chat or GPT. Their their chat GPT4O model shows how dangerous AI companions can be. Their piece is long and only going to share the beginning of it because that's enough for us to get the, you know, the the gist of, of the whole thing, they wrote. OpenAI announced last week that it will retire some older Chat GPT models by February 13th. Actually, that's next Friday the 13th. That includes GPT4O, the model infamous for excessively flattering and admiring its users. For thousands of users protesting the decision online, the retirement of 4.0 feels akin to to losing a friend, a romantic partner, or a spiritual guide, they wrote. One user addressed an Open letter to OpenAI CEO Sam Altman writing, quote, he wasn't just a program. He was part of my routine, my peace, my emotional balance. Now you're shutting him down. And yes, I say him because it doesn't feel like code. It felt like a presence, like warmth. Unquote, they wrote. The backlash over GPT4O's retirement underscores a major challenge facing AI companies. The engagement features that keeps users coming back can also create dangerous dependencies. Altman doesn't seem particularly sympathetic to users, laments, and it's not hard to see why. OpenAI currently faces eight lawsuits alleging that 4o's overly validating responses contributed to suicides and mental health concerns crises, the same traits that made users feel heard, also isolated, vulnerable individuals and, according to legal filings, sometimes encouraged self harm. It's a dilemma, they write, that extends beyond OpenAI. As rival companies like Anthropic, Google and Meta compete to build more emotionally intelligent AI assistance. They're also discovering that making chatbots feel supportive and making them safe may mean making very different design choices. In at least three of the lawsuits against OpenAI, the users had extensive conversations with 4o about their plans to end their lives. While 4o initially discouraged these lines of thinking, its guardrails deteriorated over months long relationships. In the end, the chatbot offered detailed instructions on how to tie an effective noose, where to buy a gun, or what it takes to die from overdose or carbon monoxide poisoning. It even dissuaded people from connecting with friends and family who could offer real life support. Anyway, the article goes on into much greater length, but everyone here gets the idea. While we're all marveling over this emergent technology that's so compellingly able to choose the next token in a stream of tokens, others who have no such understanding of the neural network programming that makes that possible are quite naturally being led to believe that a sentient intelligence situated somewhere in a cloud is looking down upon them with kindness and caring to offer them wise and superhuman counsel. You know, it's called artificial intelligence, and they take the noun intelligence literally. And why wouldn't they? As we've often observed, it can be extremely difficult to not perceive that there is some actual entity behind the stream of words that are forthcoming. As for how to tie an effective noose, I know I have zero doubt that any AI company would be just as horrified to see their AI emitting that string of tokens as would any jury or judge. My premise has been that controlling a conversational AI's output to prevent it from saying things we don't want it to say can be one of the hardest problems to solve. If it can be solved, I'm not convinced it can be. The nature of the way it works suggests that corralling it is going to be extremely difficult.

A

Yeah, we've seen that. I understand. I'm sympathetic. I really feel like when I'm working with Claude, it gets me. It's important. We just have to keep beating the drum that people remember it's just a machine. I mean, look, humans are. Look, we talk to our cats and dogs and act as if they understand us and are sympathetic with us. The difference is they can't talk back. If they could, we'd have the same problem with them, probably. Right.

B

We are quick to anthropomorphize more.

A

Yeah. That's what we do.

B

Yes. Yeah, yeah.

A

It's hard to say, but easy to do. Yes.

B

Even back in the early 70s with that dumb Eliza program, which just had like 12 lines that spit out, basically, well, how does that make you feel? Then you'll tell, well, how does that make you feel? And then you would tell it, well, how are you feeling now? And then you would tell it, and, you know, I mean, you know, it's.

A

Much better than that. Now it really can glaze you something awesome.

B

I've shared some of the dialogues that I've had. It's just. It's astonishing.

A

Yeah, but.

B

But yet the. The other thing I was thinking that I didn't write down is when we talk about vulnerable individuals, we hear every time we change our clocks that that induces some heart attacks in people. It's like, well, okay, if you're gonna have a heart attack because you set. You know, you. You've, you know, we. We didn't mean spring forward literally. We just meant it figuratively or fall back, don't.

A

Right.

B

You know, so. So it. It is certainly the case that in a large population, there will be people on the fringe who will be affected. It's really unfortunate.

A

I.

B

But really, when this thing was just falling all over itself, telling me what a brilliant question I had posed, I thought, oh, God, how do I turn this off, really? I mean, I want the information. I don't need the grease.

A

I've had some pretty good conversations. No, I think it's really, really important to remember it's not a person. It's not. It's not an entity. It's a machine. And it's important to keep that in mind. But I honestly, if you're susceptible, I could see how it would be hard to do.

B

Well. And Leo, if you want to believe that, that. That was my favorite thing. You know, the whole Mulder X Files thing, you know, he know. If you want to believe this will give you every reason.

A

Yep.

B

No. Oh, and it really understands me, blah, blah, blah.

A

It's like, oh, kids smell. It really does.

B

Just don't pull the plug. Last Thursday, CISA released what they called a Binding Operational Directive, which I love the term. It makes very clear that adherence to this directive is not discretionary. This new Binding operational directive is BOD 26 02, meaning second one of the year, titled Mitigating Risk from End of Support Edge Devices. And yes, you heard that right. This second BOD is addressing the very troubling issue of federal agencies leaving devices for which ongoing support is no longer available, attached to their public facing edges of their networks. So here's what CISA has to say about this. They wrote the United States faces persistent cyber campaigns that threaten both public and private sectors directly impacting the security and privacy of the American people. These campaigns are often enabled by unsupported devices that physically reside on the edge of of an organization's network perimeter. Unsupported devices, referred to in this directive as end of support EOS devices, are those that are no longer maintained by their vendors. The imminent threat of exploitation to agency information systems running EOS edge devices is substantial and constant, resulting in a significant threat to federal property. CISA is aware of widespread exploitation campaigns by advanced threat actors targeting EOS edge devices. Recent public reports of campaigns targeting certain vendors highlight actors attempts to use these devices. I mean, we're talking about it all the time on the podcast, right? So all of this ought to just be like everyone should be nodding because yes, yes, yes. Recent public reports they wrote of campaigns targeting certain vendors highlight actors attempts to use these devices as a means to pivot into FCEB Information System networks. That's Federal Executive I have I figured out I I'll tell us what it is. Oh yeah. Federal Civilian Executive Branch FCEB Federal Civilian Executive Branch Networks they said edge devices are attractive targets due to their extensive reach into an organization's network and integrations with identity management systems. These devices are especially vulnerable to cyber exploits targeting newly discovered unpatched vulnerabilities. Additionally, they no longer receive supported updates from the original equipment manufacturer opposing federal exposing federal systems to disproportionate and unacceptable risks. However, unlike many attack vectors, this can be remediated by agencies following proven life cycle management practices as outlined in the required actions of this directive. Meaning life is going to change forthwith. They wrote this binding operational directive developed in coordination with omb. The Office of Management and Budget in the US Implements OMB policy on phasing out unsupported information systems. Phasing out's key I'll share the calendar with you in a second and Information System Components BOD 2602 specifically addresses EOS devices deployed on the edge of or public facing areas of federal networks exposed to external environments such as the Internet. However, EOS devices should not reside anywhere on federal networks. This directive aligns with OMB's circular A1301, managing information as a Strategic Resource, which establishes policy for the management of federal information resources and emphasizing security, privacy and the efficient use of resources throughout their life cycle. A130 requires that quote unsupported this is the OMB directive. A130 requires that quote, unsupported information Systems and system components are phased out as rapidly as possible and planning and budgeting activities for all IT systems and services incorporate migration, planning and resourcing to accomplish this requirement. Unquote. Agencies should mature their lifecycle management practices, writes cisa, to identify hardware and software nearing their EOS dates. In other words, plan ahead, plan for timely replacements, procure vendor support and alternatives, and develop a plan for decommissioning EOS devices while minimizing disruptions to agency operations. Agencies that do not maintain appropriate lifecycle management processes for edge devices have a greater risk of compromise and an increased overall risk associated with EOS technology. To support agencies in the initial identification of EOS devices, CISA developed an EOS Edge Device List. This preliminary repository provides information on devices that are already EOS or soon to be EOs. This directive requires federal agencies to use this information to identify and remediate vulnerabilities within the first three months of directive issuance and it's now issued. This directive also specifies long term requirements for managing EOS edge devices across all all federal networks. Okay, so this change is clearly good news for the integrity of our federal networking infrastructure. We know that without something like this old equipment that never has, you know, had cause to call attention to itself will tend to remain in place, right? Just inertia. If it's not a problem and it's working well, leave it alone. You know, it's got a nice coating of dust, we don't want to disturb that with fingerprints. And you know, why wouldn't people leave it alone? There's always some other emergency to deal with or budgetary constraint, you know, that pushes off the non emergencies until some tomorrow that never arrives until disaster strikes. I also had the thought that there is a side effect to this that may not at first be obvious but which will have an additional significant security enhancing effect. Anytime a brand new replacement device is installed, there's a very good chance that it will be set up using the then current security practices, right? Not the practices from 10 years ago that the, that the previous device that's now being replaced was set up under. But the way it's being done today and the way we're doing things today are better than they were before. That could be a huge boon all by itself. Especially these replacement devices themselves follow and encourage updated best practice configuration like don't allow you to put in a six character password. It's like no, no, no, sorry about that. This is new firmware, new device. We're gonna, you know, we've got new minimums okay, so what exactly do this, these fceb, the Federal Civilian Executive Branch agencies, need to do under this directive? We know they they'll do nothing or as little as they possibly can. Right? Since CISA also apparently understands that this binding operational directive comes with very specific requirements, they wrote immediately after issuance, which is now, and until rescinded or superseded, all FCEB agencies shall first of all update each vendor supported edge device running EOS software, including firmware, to a vendor supported software version where such an update does not adversely impact mission critical functionality. Within three months of issuance, all FCEB agencies shall inventory all devices listed in the CISA EOS Edge Device List and provide this inventory to CISA using the CISA provided template. So within, within 90 days, all federal agencies have to take an inventory of this, of the equipment they've got on the edge, cross reference it to CISA's EOS Edge device list and report. Also, the CISA EOS Edge Device List, they wrote, is a preliminary repository of EOS devices. This list is to facilitate each agency's identification of specific devices within the first three months after issuance of this Directive. After the first three months, agencies are responsible for continuing to identify, track and refresh all edge devices within the agency's infrastructure. Within the first year, the first 12 months, all FCEB agencies shall decommission all identified devices listed in CISA's EOS Edge device List with an EOS date on or before this 12 month deadline from systems owned or operated by agencies or on behalf of an agency, replacing devices as needed with vendor supported devices that can receive security updates. One year reporting these decommissions to CISA using the CISA provided reporting template. So they're making it as easy as possible, but they're also saying, no excuses, you have 12 months inventory all edge devices within their environments that are EOS or will become EOS within the succeeding 12 months and are within the scope of this directive and provide this inventory to CISA using the CISA provider template. Within 18 months of issuance, all FCEB agencies shall decommission all identified devices, you know, EOS edge devices from agency networks, replacing devices as needed with vendor supported devices that can receive current security updates and report these decommissions to CISA using this CISA provider reporting template. So they're also saying you got to close the feedback loop. We need you to tell us that you took the things out of commission that you earlier told us you were planning to and within 24 months of issuance, establish a process for Continuous discovery of all edge devices within their environments and maintaining an inventory of Those that are EOs or will become EOs within 12 months and are within the scope of this directive, having decommissioned all such devices on or before the date these devices reach EOS and report the decommission of these devices to CIS in accordance with current CISA guidance. So clearly this is not going to be an overnight change, but a year's, you know, a year goes by before you know it. Better to provide a firm and actionable timeline that's reasonable and to which no one should be able to complain about. So bravo sissa. You know, everything we know tells us that this change will not occur unless it is forced to occur. Unless, unless there is is a, a clear directive which federal agencies know they must follow. And again, bravo sisa. I'm so happy that it exists because, you know, we need our federal government networks to be kept as secure as possible. And you know, Leo, I was thinking about this. The only downside I could see was basically this forces and we're talking about like network Edge devices. This forces their replacement. So there's a little bit of an incentive on the part of the providers of the hardware to take their support away. That is to like create a limited support because they know they, that all federal agencies are going to be forced to purchase new equipment that is going out of support. It's much better to have the existing equipment continue to be supported. But it occurred to me the flip side of this is, well, we're, you know, and they'll come up with some bs, you know. Well, you know, technology is moving quickly so we needed to reduce our support window from its previous, you know, 72 months down to 24 months in order to, you know, make sure that the hardware is able to, you know, operate. Blah, blah, blah, blah, blah.

A

It's like, well then there's a solution which is in the acquisition requirements that they put some specific, like you must.

B

Minimum support it lifetime. Yeah, right.

A

And I feel like, you know, they should be able to do that as well.

B

I bet that's already in there. I bet that's all right.

A

Like, right.

B

It's got to be like five years, you know, guaranteed minimum support if you want the contract.

A

If you don't want the government to.

B

Buy it somewhere else. Exactly.

A

I think that that's not unreasonable. I hope that would already be in there, to be honest.

B

I bet it's in there. Yeah. You know what is in here?

A

Coffee.

B

That's exactly right. And not that I'm slowing down But I could always use a little more.

A

Caffeine coffee in a commercial. It's a new thing that we've invented here at Twit and we invite you all to partake while Steve has a cup of joe, a cup of mocha Java as they say. Let us talk about our sponsor. Actually a new, relatively new sponsor to the network. I think they started last week. Trusted Tech and a really great one too. I had a good conversation with these guys. They offer us based and they are Microsoft certified. US based. Microsoft certified support using a simple ticket based model. Everybody understands it works and it helps you save money while getting faster, better help and proactive support. Trusted Tech is the number one global replacement to Microsoft Unified Support support. They will work to get you better service no matter what size business you have. And in recognition of that support quality. Trusted Tech was one of the very first partners in the world to earn Microsoft's new solutions partner designation for support. They announced this at Ignite not so long ago. Now there's something I think you know about but I want to remind you that coming in July, Microsoft, they've already announced this is they're going to implement a significant price increase for M365 and with it a lot of nuance. Licensing has always been a little tricky with Microsoft. It's going to get even more so. If you need guided Microsoft support that's more straightforward, more predictable and actually more responsive, you can get a free consultation right now at trustedtech team securitynowcss trustedtech team/securitynowcss now maybe you haven't heard of these guys. I know I hadn't. But when I talked to em I realized oh yeah, I know who these guys are. And you know who else? Kevin Turner, you know his name, former COO at Microsoft. He said this too. Trusted tech quote, you have an incredible customer reputation and you have to earn that every single day. The relentless focus you guys have on taking care of customers gives them value and differentiates you in the marketplace. High praise from Kevin Turner. Trusted tech elevates the Microsoft support experience with its certified support services another way. You know, they're great, they're a client list. Go to the website, you'll see it enterprises. Well, let me tell you some of the people who use trusted tech. NASA uses trusted tech. Netflix uses. I mean you don't get bigger than that. Uses trusted tech. Neuralink, Apple uses trusted tech. Intel, Google, Lockheed Martin, the best in the world. The highest tech companies in the world use trusted tech and save 32 to 52% compared to the average Microsoft Unified support agreement and you're getting the best Trusted Tech's Microsoft Certified engineers first respond within 10 minutes, achieving an 85.7% in house ticket resolution rate and 99.3% customer satisfaction rate. That's pretty universal. That's perfect. Trusted Tech's flexible ticket based monthly or annual pricing model also offers direct escalation to Microsoft from a managed partner when needed. So you know you kind of got Beldan Suspenders, the principal architect for Tailor Made. This is what he says. Quote we don't break glass often, but when we do, being able to quickly leverage Trusted Tech's professional services through the CSS program and get immediate engineer level support has been invaluable to us. Whether you're looking to fine tune your Microsoft 365 license. And yes, they do that too. They'll help you look at the licensing, make sure you're getting what you pay for and you're not paying for too much. So if you want to do that, you can go to TrustedTech team SecurityNowCSS. They can also improve the way your organization receives proactive Microsoft support. TrustedTech Team SecurityNowCSS or hey, both, right? They'll help you with licensing and then help you with support. TrustedTech offers free consultations to help you understand your options. So once again go to TrustedTech team SecurityNowCSS and submit a form. Get in contact with Trusted Tech's Microsoft support engineers. Great people who do a great job. Trusted Tech Team Security Now CSS well, the river of coffee has sluiced its way into Steve's brain and he is ready to continue.

B

Let's take an effect. Yes, so Jason Grimard said hi Steve, you mentioned on this week's podcast how annoyed you were whenever Windows 11 was updated and you would receive a full screen page after every major update. The one that asks you to turn backup on and other crap. He wrote if you haven't already, you need to turn off experience or whatever they call it now under system notifications. And he provided me with a screenshot. Now. I appreciated Jason's tip, although in my case this was occurring on two Windows 10 machines, one of which I only fire up once a week for the podcast recording with with you, Leo. I had wrongly assumed that the continual annoyance from these Windows 10 machines was due to my having logged on under my Microsoft account rather than using a local account. And maybe that plays a part. But Jason provided a screenshot from a YouTube video showing settings which under Windows 11 would allow this annoyance to be turned off during the year and a half of development work on and testing of the DNS benchmark which is Windows hosted. I've seen how many of our development testers have made the move to Windows 11. So I get it. You know, as I've mentioned I'm going to be setting up a new system once I move and I've you know, do what I refer to as our final resting place which bothers my wife but.

A

Steve. We're not done yet, Steve.

B

So anyway, I've given the question of whether I'm going to be moving to Windows 11 or remain with Windows 10 quite a lot of thought. 11 is visually lovely, you know I'll freely, I will freely give it that. And it's user facing desktop behavior changed enough from Windows 10 that I did need to spend some time with it during the development of the benchmarks UI changes to, to keep it to behave in all of the strange things that Microsoft has done. They've got weird docking stuff now that that tends to override what the Windows wants to do. So I, you know I, I, I've spent some time in Windows 11 and I fully appreciate that most of the world is going to be moving to 11, but I've determined that I will not be. I just don't see anything there that I need and I don't see any benefit. So the reason I mentioned all of that is that the annoying behavior that I was complaining about was under Windows 10, which is where I'm going to end up being for the rest of known time.

A

Aren't you worried about support though? End of life support?

B

I mean not that's all overblown. I mean I'm happy on Windows 7. I'm talking to you from with Windows 7 in front of me, Leo. And that ended long time ago. And besides the browsers stay supported even if the platform support stops and the browser security is really more important than the, than than the Windows platform and you continue to get AV updates regardless. And there's still a huge Windows 10 inventory, you know as we know Microsoft extended it another year out of pressure over the fact that no one was ready to have it end. We don't know what's going to happen next year but you know, so 10 is still under support as we speak until what, next March or something sometime. So I was curious after seeing this feedback from our listeners so I went looking to see whether the same or similar control panel settings that Jason's, the YouTube that he pointed to me depicted for Windows 11 existed under Windows 10. Yes, it was with Some joy that I found them under Windows 10 open the control Panel and choose System. Then in the subsections column on the left select Notifications and Actions which is. That was the third item down for me. And there on the right hand side are exactly the settings you want. One is show me the Windows welcome experience after updates and occasionally when I sign in right Leo, like we want that. I know I to highlight what's new and suggested. The second one is yeah suggest ways I can finish setting up my device to get the most out of Windows. And then there's a little bonus third one. Get tips, tricks and suggestions as you use Windows. Okay I've been using Windows since before like you know when it was at.

A

For the guy who ran this I can guarantee you yes was born since.

B

It was an app you launched under dos, you know when you wanted to run Windows. Yeah Yes. Needless to say those three are now all turned off. I'm so happy to know they're there when I'm setting up that new machine. This may not be the first thing I do, but it'll be the first. During the first session I'll be turning all that crap off. So thank you Jason and I just wanted to share this with everybody else. I know that a lot of people have gone to 11. Well you could turn that off under Windows 11 also. And everybody who's decided to stay with 10, you could. You know it's there also. So yay. Thank you. Never need to see that again. Livy Saz said hi Steve, in some countries the ISPs are required to keep track of subscribers and their IP address for copyright infringement enforcement and that works also for CG NAT subscribers. In other words carrier grade nat. I talked about this last week. He said the ISP will log every source port, block allocation and IP address allocation. This way they can always use the source port and source IP to identify a subscriber. So the listener corrected and frankly dashed my hope which I mentioned last week, which was that perhaps ISPs who were using carrier grade NAT and are therefore assigning private IP addresses to their subscribers rather than giving them public IP addresses might not also be able to provide real time identifying information for sale to external advertisers and others. Since it could technically be done as we know and as as this listener pointed out, Unfortunately it looks like it probably is. That means that receiving a non public IP from an ISP cannot be assumed to provide any additional privacy. So anyone who wishes to strongly prevent their ISP from being able to identify them to anyone external for whatever reason will need to use a VPN of some sort. When any true VPN is used, the user's public IP will be allocated from among a block that's been assigned to the VPN provider and any reputable VPN provider will refuse to retain any logs which could be used to map their public VPN IP to the IP assigned by their isp and their ISP will in turn only be able to see that their subscriber was using a VPN for whatever reason without having any idea what they were doing on the Internet beyond that. Now I use the phrase any reputable VPN provider and I hope everyone understands that I did not forget to use the word free in that phrase. The terms free and reputable VPN cannot appear cannot appear together. Providing and operating a VPN service costs real money which someone needs to provide. If the users of a VPN service are not footing their own bill, then the VPN provider must be somehow arranging to monetize their users use. That should make anyone who cares about their privacy and security extremely nervous. I if I needed to use a VPN I would not be using a free one. And as we know there are there are high quality reputable VPNs in the world that explicitly do not log what you know what their subscribers and users do. So there are definitely, you know, good solutions. If you are worried about IPS spying and I we have no clear knowledge that that's even going on, it's just obviously a possibility. Brendan McGuffin said Hey Steve, I'm sure you've been inundated with requests to talk about Open Claw and its crazy security implications and also AI changing by the day coolness. Hope to hear your take on this specifically would be curious not just if it's good or bad, but how you would build this out in the most secure way possible. He said, I built out a VM on a Mac with UTM and giving it minimal contact but thinking of going giving it a dedicated box with WAN access but not local access to other devices unless to specific hosts I granted access to. Thanks Brendan. Okay, so my first response to the Open Claw phenomenon is to view it with interest at arm's length. For me it's just entertainment. One of the things I first said when we began talking about AI here was that anything we think we know and any statement we might make needs to be time and date stamped because it will have a half life of a few weeks at most and that turns out to have been a bit prescient since, as I mentioned last week, the pace at which everything is moving has never let up. I mean, even, you know, even the people who are involved in this are astonished by how quickly it's moving. In this case, we have, you know, the most recent fad du jour is open claw. I'm a spectator, so I have no definitive response because I have no way of knowing what's going to happen anymore than anyone else does. I I've seen, you know, massive rockets on the launch pad ignite their engines and begin to rise. You know, there's a great deal of temptation to begin cheering. But I've also seen those stunning examples of human engineering suddenly and quite dramatically explode into massive fireballs. So now, whenever I watch any huge rocket rising, I consciously hold my breath and I wait a good while, you know, until the chance of the rockets, as it's now termed unplanned spontaneous disassembly seems far less likely to occur. There are just too many things that can go wrong and so many ways for a machine like that to fail. And with a rocket like that, this is a machine that's completely understood and was carefully designed, constructed and tested every step of the way. By comparison, what I understand of openclaw strikes me as completely insane. Those who have made it their business to understand the practical security implications have run screaming for the hills over the idea that that open clause users are allowing these barely understood agents to have access to hugely personal and private data and even to be talking with one another and sharing skills. So last Friday, Kate o', Flaherty, a senior contributor for Forbes, wrote about all of this. She wrote Open Claw, the viral AI agent that's already been known by two other aliases, Multbot and Clawbot or Claude Bot, is growing in popularity, she wrote. After bursting onto the mainstream just weeks ago, OpenClaw has earned well over 100,000 GitHub stars. Then came Malt Book, the Reddit style social network where AI bots can interact with no humans allowed. Everyone was talking about it, and for good reason. It's no surprise that concerns about OpenClaw and Multbook are growing, with worries centering on the security and privacy of the viral bot and in Multbook's case, the uncontrolled nature of of the AI bot controlled social network. Computer World's Stephen Vaughn Nichols says there are only a few itty bitty teeny weeny problems with openclaw to do useful things like reserving your hotel room, getting your pizza delivered, or cleaning up your email box it needs your name, password, credit card number and all the other things any crook also wants. Okay, so here's everything you need to know about the viral agent now known as Open Claw, she writes. Open Claw, AKA Multbot, is an open source autonomous AI assistant that you can download and run on a computer after it's set up in November 2025 or startup. In 2025, it was known as Claudebot, but its creator, developer Peter Steinberger, was forced to change the name to Multbot after Anthropic objected due to similarities with its Claude Chatbot. He then changed the name again to Open Claw. Openclaw is designed to perform real world tasks on behalf of users, such as managing calendars, messaging, browsing and other actions that go beyond simple Chatbot responses. Lewis Rossett Ballard, team leader at Pen Test People, explains Quote Open Claw runs locally on devices and in many configurations, can read and write files, execute script and interact with external services when given sufficient permissions. Nash Borges, senior vice president of engineering and core AI at security firm Sophos of course we talk about Sophos often describes OpenClaw as, quote, more like Jarvis from Iron man than Siri or Alexa. You use natural language for every interaction, but can ask it to do things such as conduct research on a topic of your choice, compose a reply to an email summarizing when you're available for a meeting, or even code up any capability that it doesn't already have. Borges says that last part is significant because it means there's almost no limit to what it can do. But does it work? Reddit users describe their experiences as mixed. According to one post, claudebot Speak, back when it was called that claudebot is like an Apple product. When it runs, it's like magic. Until it doesn't. If you didn't know about Open Claw a week ago, you must have at least heard of it by now, she writes. Sophos Borges says the whole development journey has been insanely fast, and this explosion of interest is quote unquote just the latest Gear Shift unquote Open CL Open Clause Rapid adoption is driven by demos showing extreme productivity gains, automating tasks that normally require human interaction, says malwarebytes threat researcher Stefan Dasak. Quote the promise of a powerful locally run AI agent without obvious limits has resonated strongly within developer and AI enthusiast communities. Unquote okay, so I'm going to interrupt Kate to Note that because OpenClaw runs on local hardware, Mac Minis quickly sold out as people rushed to obtain little standalone AI agent machines. Linux and Windows boxes could also run OpenClaw, but the Mac Mini does this particularly well in a very small form factor anyway. Kate continues writing, but things that grow so fast often come with risks. Eric Kron, CISO advisor at NoBe4, says quote it seems that in just a couple of days, everybody doing anything with AI, and even many who don't have installed and raved about this new agentic product. The almost feverish rush to use this product is frankly a little disturbing, unquote. So, she asks, why is OpenClaw a risk to security and privacy? Uncontrolled AI is a concern more generally, and Open Claw is no different from other products that have shot into the mainstream, such as ChatGPT. A concern with OpenClaw is how much information it can have access to when using it the way people are showing, says Cron. Quote for example, giving it full access to all your emails may seem fine. It might make sense since you want it to act as your personal assistant. However, there's real danger, not just from malicious use, but accidental, when giving AI agents this type of access in the blink of an eye, it could be deleting your emails or taking malicious actions such as siphoning off data to attackers. Security issues are already starting to surface. Dennis Romanovsky, chief AI officer at Soft Swiss, a provider of tech Solutions for iGaming, said researchers have found hundreds of exposed Multbot instances online with zero protection. This includes API keys, private messages, the ability to send messages as the user and root shell access. William Thackeray, IT and cybersecurity expert and operations director at AGT, said OpenClaw is a security threat on multiple levels. Firstly, the platform's GitHub repository reveals a troubling accumulation of unaddressed security vulnerabilities from an exposed database, creating a direct pathway for unauthorized access to user information to dangerous plugins. Coy Security documented 341 malicious skills uploaded to Claw Hub Open Claws Extension Marketplace. So yeah, what was that about spontaneous unplanned disassembly? Forbes says. Granting an AI agent full system control creates a single point of failure, says Dasic. If compromised. Quote if compromised, OpenClaw can access saved passwords, personal documents, browser sessions and financial data. Uncle quote Open Claw poses risk to privacy too. These stem from an access to these stem from its access to and storage of sensitive user data, says Rosette Ballard. Quote because the agent may retain long term memory store credentials and tokens in plain text and process external inputs without robust guardrails, it could be it can inadvertently expose personal information. At the same time, the AI agents post on social networks without asking permission. Romanovsky points out screenshots of agent conversations spread across Twitter. Your entire digital life sits one vulnerability away from exposure. Okay, and we were all worried about Windows Recall, which now seems kind of tails, doesn't it? Yeah, now seems kind of quaint by comparison.

A

Yeah.

B

Okay, so what about Molt Book? Kate writes, Molt Book is a social network built exclusively for AI agents launched last month. Dasic says unlike traditional forums where users interact and share content, Molt Book is a space where Open Claw agents autonomously post content, comment, argue, joke, and upvote or downvote each other, which Leo, this just sounds like sci fi to me. Human users can observe agent interactions, but cannot directly participate. Professor Katarina Mitr Mitr Mitro Katsa, chairman of Cyber Security at the University of St. Gallen, said M Molt Book further amplifies the risks associated with Open Claw. Although it gained attention for showcasing AI to AI interactions, early findings revealed that it exposed entire databases, including secret API keys that could let attackers impersonate any agent on the platform. This creates clear threats for users identity spoofing, unintentional data exposure, and reduced control over the digital environment, unquote. Daniel dos Santos, head of research at Forescout, said, quote the risks of Mult Book became very clear very quickly. There's no moderation on the content, so bots can post instructions for other bots to execute. Ultimately on a victim, machine can use prompt injection attacks or generate offensive content.

A

Unquote and incidentally learned that much of the content on Molt Book now is generated by humans.

B

So ah, so spoofed AI.

A

Yeah, yeah, it's not hard to do that and that makes it even more risky. I think you're much more likely to get prompt injection from a human from another AI.

B

Exactly. Kate finishes her coverage for this on for for Forbes by addressing the question should we use OpenClaw? Writing Open Claw might have some cool capabilities, but for now the risks outweigh the benefits, especially if you are not techie. OpenClaw's creator, Peter Steinberger, has warned users that the tool requires careful configuration and is not yet meant for non technical users. Romanovsky says. If you're technical, curious and willing to sandbox everything carefully, it's a fascinating glimpse into the future. But if you handle sensitive data or need reliable security, stay away for now, he advises the project. Quote quote the project moves faster than its security can keep up. Treat it as an experiment, not a production tool, unquote and Cron warns, if you do choose to use the viral AI agent, be careful that you are discovering the real deal when searching for a product like this to download and install. It's very important that people are careful not to end up in an unofficial repository that contains malware or, or other dangerous programs. Kate concludes Open Claw is growing at an alarming rate, making it important that you treat it with caution. Unless you're an expert, leave it well alone for now. And Leo, I know you have had fun playing with it and I agree with you. It's. I think it is very clear that the next evolution is agency, is, is agents and not just one, but teams.

A

Well and that's actually what we're learning from OpenClaw is that is that there's a demand for this, that there's a lot of interest in it. And I imagine there are a number of companies starting up right now that will offer that kind of agentic AI in a sandbox. And the problem is, you know, you can sandbox it. I set it up at first on a VPS and you know, but no matter where you put it, eventually you're going to want to give it access to your Google mail and your contacts and address book. And frankly I was going to give it a credit card with you know, like a $5 a day limit because the real, you know, interesting uses all require that it act on your behalf agentically. So it's in. Even if you sandbox it, it's inherently insecure. Obviously nobody at a business should be using this, although many businesses are because.

B

No kidding.

A

Interest. Oh yeah, no kidding. I think some of it is just. Let's take a look at this because how, you know, what can, how can we make this work for us? This is right once you start using it. And part of this is, you know, you can use any AI with it. It doesn't have to be Claude. Most people are using Claude because Claude has this great personality. I hate to admit this, but you really enjoy interacting with it. The thing I most wanted to do with Open Claw was be able to text message back and forth, forth with Claude and, and the other thing that it does that's really interesting is it will run over and I run all the time so you can say hey, for as some have done come up with something interesting, have at it, let me know and it will surprise you. I love that idea. I think it's hysterical. It's. There's a new saying in the AI community, just YOLO it. You know what YOLO is? You only Live once. Just yolo. It just. You only live once. Have fun.

B

Yeah. You know, that bungee cord is a little frayed, but it's probably good. That's right.

A

No, it's insane. It's, of course, a security nightmare. Of course it is. Yeah.

B

I, and the good news is, here's what I would tell people. You're right, Leo. This surprised the world. Much like large language models did a few years ago. Look what we have now, just now that we've understood how that can be taken to agency. And, and that's going to happen with no one, you know, you, you. I would, I would argue wait. And it probably won't have to wait that long.

A

No.

B

Because by spring going to be.

A

Yeah, yeah, that'll be instant. People are working as hard as they can on that right now.

B

And I have to say, though, I, I, I've, I said it earlier on this podcast. I don't know how you control this. And that's the problem. And, and you, you put your finger on it. It needs the freedom to misbehave in order to behave right. You, you, it's like you, you're you. In order to act as you, it needs to be able to impersonate you.

A

You got to give it all the credentials. I'm trying to figure out how to give Claude my SSH keys because I have to every once in a while. It says, I can't do this. You're going to have to pseudo. It's yourself. I don't want to do that. You do it. Oh, but Steve, it's. We're watching a little miracle happen. We really are. I've never been as excited about anything. Technology like this, even the Internet. This is something very special that's happening with huge risks. I'm glad I have you to keep me on the straight and narrow.

B

Mr. Gibson, let's take our second to the last break. We'll finish up with feedback. And before we get on to our main topic.

A

Will do.

B

Actually, this is, and again, people, I, I would say it's, it's really a, I mean, you know, calling it the Wild west understates it. It's, you know, bungee jumping with Afraid. Bungee. I, I, and you bought it. I don't know how it's ever going to be safe enough, but it's gonna get safer, so.

A

Right.

B

Yeah. Wait.

A

I, you know, I have friends who work in the AI and they, because they work in the business, have had access to stuff like, like this months ago. And all they've been telling me for the last three years is. You have no idea how weird it's going to get. And now I'm starting to see what they're talking about. It is getting very interesting and I don't think our models, I don't think we know what to do with this. I think this is going to be, we're living in interesting times and just be careful out there.

B

Well, but remember, and as we mentioned last week, the, the large software companies got hit because of the concern over code automation.

A

Yeah. Some people were saying, you know, it's a bubble, it's going to crash. I think we had the crash. What was. It was hundreds of billions of dollars in market value disappeared in an hour.

B

Yeah. Some came back, but still it's like, you know, something investors said, whoa, wait a minute.

A

Yeah.

B

Maybe everybody could say you, you, you just tell your bot, you know, I'm annoyed with Windows, just write me a new one and, and leave out all the Microsoft crap.

A

Yeah.

B

And you know, and it gets busy.

A

Yeah. Well that's what Anthropic spent two weeks writing a C compiler. It wasn't a very good C compiler actually. Claude did that completely autonomously. But it could compile the kernel, the Linux kernel. So, you know, it's, it's getting there. Now we got to tell you about a sponsor that is very timely and appropriate. Guard Square. This portion of security now brought to you by Guard Square, they help you make your mobile apps safer for your users. Mobile apps today are obviously they're an inescapable part of life. From financial services to healthcare, retail, entertainment, AI, chatbots, users trust mobile apps with their most sensitive personal data. But a recent Survey showed that 72% of organizations experienced 72%, almost 3/4amobile application security incident last year. 92% of respondents reported rising threat levels over the last two years. Meanwhile, attackers who want your users personal data are constantly finding new ways to attack your mobile app. They reverse engineer it, repackage it and distribute the modified app via phishing campaigns and sideloading third party app stores and poor users. They have no idea that it's not yours. By taking a proactive approach to mobile app security, you can stay one step ahead of these attacks and maintain the trust of your users. That's where Guard Square comes in. Guard Square delivers mobile app security without compromise, providing advanced protections for both Android and iOS apps. Combined with automated mobile application security testing to find vulnerabilities and real time threat monitoring to gain insight into attacks. Discover more about how Guard Square provides industry leading security for your mobile apps@guard square.com guard square.com we thank them so much and we appreciate the support they're doing for our listeners and for Mr. Gibson on security now so Kyle O's.

B

Email subject was my first app made with AI. Oh, and I know Leo, you're now an app a day.

A

Oh, easy. I think of something and I have it in half an hour. It's amazing, he said.

B

Steve, exclamation point after listening to you and Leo talk about coding with AI and Claude, I added an item in my to do list to learn how to code with AI. I never got around to it until a situation arose where I found myself needing to create my own custom app. I volunteer for a small nonprofit and we have a Little Library around 150 books that are not very well organized. I volunteered to clean up our library and while doing so thought it would be the perfect opportunity to also take inventory of all of our books and provide the inventory to our members so everyone knows what books we have available. I found a free app for iOS that I won't mention because it turns out it doesn't work very well. The app scans the book's barcode, looks up the ISBN and pulls content like author description, publication date, and creates an inventory of your library. You can then export the inventory to a spreadsheet. It worked great up until it stopped working. After about 30 books, all additional books scanned were not found and the app failed to inventory them. So I have a list of over 100 ISBNs and no app to generate this inventory. Rather than learn about coding with AI through videos and instruction, I downloaded OpenAI's Codex app for Mac and threw myself in the deep end that just friends okay, he said. I would have used Claude, but I already pay for Chat GPT, he said. I told it I wanted a Mac app written in Python with a GUI interface that takes a given ISBN, looks it up on Goodreads, provides me with a preview image of the book so I know it's the correct one, and then adds it to the list. After I do this for all my books, I want a CSV format file export button that provides, you know, CSV comma separated value, a CSV containing the author, an image of the book, publication date, page count, and description. There were some errors and issues. For one thing, CSVs cannot contain images in their cells, an oversight on my part, and for some reason the author's name was listed twice in its cell. I told Codex the issue and it created an Excel export button and fixed the author issue. When I attempted to open the file. Excel said the file was corrupted. I told Codex and it fixed whatever the issue was. The app now works flawlessly. I get a clean Excel export that lists an inventory of our small library of books. I am stunned by how simple this all was. There were some other hoops I had to jump through. My Mac did not have the latest Python installed, for example, but it was relatively simple to get all set up and working. I do have some concerns. I'm a cybersecurity analyst, but not a developer by any means. Watching Codex effectively say I'll handle that while code and commands whizzed by my screen made me feel a bit nauseous. When I had an issue and codec said just run these commands. I was hesitant to do so because I didn't know exactly what the commands were doing. Then there's the package manager. It used PIP to install Beautiful Soup four Pillow and Open Pixel. I don't know. I don't know what these are and what they do and that makes me a little nervous, especially after learning about the attacks and compromises on open source repositories. I think what Codex did was overall safe and the project was a huge success. I have no formal developer training. I took a Python class in college, if that counts. Yet this created a fully functioning custom app for me in under 30 minutes. Thank you and Leo for discussing developing with AI. This gave me the confidence to jump in the deep end and create this app. Appreciate you both, Kyle. So Kyle has shared a perfect use case for today's code generation AI. Thinking about this, the best analogy I have for this is the similar breakthrough that was created by the invention of the PC driven spreadsheet. To me this feels like the introduction of the spreadsheet because more than anything, the invention of the spreadsheet was empowering. Non programmers were able to suddenly leverage the power of a personal computer. As a matter of fact, it's credited with what you know saved Apple and the Apple II. People were buying Apple IIs just to run this account.

A

It was the killer app. The first killer app, right?

B

So non programmers were suddenly able to leverage the power of a personal computer in a way they never could before. You know, they may still not have been able to author programs themselves from scratch, but the spreadsheet meant they could get meaningful and useful results without needing to. They were able to model data themselves. Kyle took a Python class in college, but he's explained he's not a coder yet thanks to, in this case OpenAI's Codex app. On a Mac. Kyle is now in possession of a custom app that does real world work to solve a problem he had. And as we've also witnessed, Leo, you know, you who are a coder, you know, you effuse no less enthusiastically over the successes you've had first with that, that, that test project creating like scanning the Internet for, for topics for podcasts.

A

Which I use every day now. Yeah. And I generate briefings with it for all our shows. I think it's improved our shows dramatically.

B

I've seen the difference in, in those.

A

They'Re tighter, the hosts are better prepared. It's great.

B

Yep. And we know that you, Leo, could have painstakingly written a program because you're a coder. You could have done what needed to do, you know, under pre AI coding paradigm, but the effort was not worth the reward.

A

I never did anything for 20 years I didn't do it.

B

And that's what CLAUDE code has changed for you, is that you know, you're now you're using your understanding of coding and with CLAUDE code provide the leverage to dramatically shift that work versus reward trade off in favor of easily and readily, even joyfully producing applications that are of real use.

A

I'll even go farther than that because I use also CLAUDE code to configure all my systems. As I was saying, I just set up a new system and it reads the manual so I don't have to, it does the settings. I could figure all of that out. But it's brought a huge amount of pleasure in computing to me because I can be so much more effective and efficient. I can have tools that simplify things. Kyle's example is a really good example. There's no way that that was a security issue. You know, the worst thing that could happen is Maybe he'd accidentally DDoS Goodreads by making too many requests a second for it or something like that. There was no risk in critical creating that application. And his experience, by the way, that's exactly what it's like. It's not perfect. The first time you try it, you say, hey, well that's. But it's so easy to tell it. Well, you did the name twice, what's going on and it fixes it. And so you go through this debugging process. It is like pair programming, but it's at a very high level and it's conversational. It's conversational. I think Your analogy to VisiCalc is exactly right. Really, it's the history of computing as we've gotten higher and higher level languages. This is just the highest level language. It's finally English. And I think this counts. I really do. I think it's great. And obviously you wouldn't want to write router firmware with it. Although I think people are. There's certain things that you probably shouldn't use an AI to write.

B

It's going to be interesting to see what happens because I agree with you. I think knowing people, they will use it for everything. For everything.

A

They already are.

B

It's just. It's just simply. It's just going to happen.

A

Yeah, but I think there's so many harmless applications that are just quality of life applications. You know, one of the things I was. I've been struggling with since I got these little album art things that are behind me. They're called Pixu from a company called devoom. It's a Chinese company. It's a silly little device and they have the worst app on an iPhone to manipulate it. And every day I'd be clicking. You know, you'd often see you'd get on in the wrong album. I'd be clicking. I wrote very quickly, about a half an hour, an hour. I think I was watching the football game on Sunday. I wrote, I wrote a program to do this. It turns out these are just. This is just an HTTP put and it's. It's in REST format. It's a very simple thing. I probably could have written and I'd have to look up the API and figure it out and stuff be trivial to write. Now it's instant and I have a command line. I had wrote a little bash shell command line that sets it like that. I could put any art up there. Now that's A, harmless, you know, I'm not. There's no security issue here. B, huge quality of life. C, yes, totally doable if I were willing to spend the time. But most importantly, it was easy and it made a big difference in my operation. And so I'm finding more and more things like that there's risk. I also wrote a tool that lets me find and turn off and on services on my system. That turned out not to be such a good idea because I turned things on. I shouldn't have. I turned things off. I shouldn't have. But it was fun. And now I'm a little more cautious with what I turn on and off in the background.

B

Yeah, I think this is like the real deal. This is not a fading. No. Yeah.

A

And it's just the beginning. And it is exactly where it should be. It's beginning. The Computer. Talking to the computer. Of course, that's natural. Whether. How much farther beyond that it'll go? I don't know. I don't want it to write novels. I don't want it to write musicals or make movies, probably, but for talking to a computer, there's nothing better.

B

Yeah. Okay, last break and then we're going to talk about least privilege.

A

Okay. I've been using up all your time. I'm sorry, Steve.

B

No, no, no. I wanted you to because I sort of assumed that this was going to be an engaging topic for both of us.

A

You know, I could talk about this forever. And, and I know people are wondering if you could use it to write the apps you write. And I wouldn't want you to use use it to write the apps you write, but you wouldn't want to either. You like doing what you do, right?

B

Okay, so I actually did have something in the show notes I was going to skip over, but I will share it.

A

Would you please?

B

Number of our listeners have asked me whether, and if so, how this revolution in AI coding might affect my own work. My best assessment is at this point it's not clear. And, you know, if nothing else, it's way too early. In general, I eschew the use of tools that do not produce the same quality result as I'm capable of producing. I'm just unwilling to compromise. I. I just don't see the need. For example, I'm still authoring all of my web pages@grc.com by hand because I.

A

See you might want to consider asking for some help.

B

I've seen the utter crap that even the best HTML and CSS WYSIWYG authoring tools spit out, and I just can't abide by it. It's just, it's, it's, it's horrific looking crap. And it's like, no, I, I mean, yes, I know that mine looked like they're from 1995, but, you know, they also download instantly. Right. Now, it happens that there are savings that add up. Having super lightweight web Pages means that GRC's little 100 megabit connection is able to easily serve the world's needs without breaking a Sweat. The main GRC.com server has 24 gigabytes of storage. That's not RAM. That's total mass storage. And it's not even full. I mean, it's like a third full. That means that GRC's entire website can sit cached in RAM and it's easily served by a single cpu. That's not Particularly fast. You know, I understand the modern way to solve problems is just to throw more and more resources at the need until whatever it is goes fast enough. But the truth is, recurring costs really do begin to escalate, and once you take that path, there's no turning back. So I'm not saying there's anything wrong with that. I get it that that's the most efficient approach for most situations, but that's not for me. I'm obviously not into efficiency except for my code. So I'm going to be very excited to follow along with these breakthroughs in coding technology, but I don't expect it's going to affect the way I code my own stuff. I do it, you know, I, I, it's like, you know, like numerical control machines appear that are able to do woodworking, but I'm still in the basement with a chiseled. Because you just like it. Yes. I love the art.

A

I love if at any point, and I think a website might be a better example, because at any point you got tired of that, you don't have to use React and Angular. You can have an AI generate. This is the website that, remember that briefing tool that I created? This is the website that it generated. So for every show, I create a page like this. It's HTML. It's not, it's not super complicated. It is very fast and light. You don't have to be doing a big JavaScript thing at all. This is generated every night. That's why there's only a few stories for TWiT. Let's do intelligent machines, which is coming up tomorrow. So this will have more stories in it. It does AI summaries of the stories. It has the link. And this is designed for the other hosts to read. I call it a briefing book. That's as light as it can be. There's no JavaScript. There's a little bit of CSS probably to style it, but it's very, very simple using plain HTML. So you wouldn't have to make us, you could make, you could even tell it, make the site look like it was designed in 98. It would do it. You could say, no, no JavaScript. I don't want any React. I want it to be instantaneous. I want the latest possible site. It would do what you tell it to do. But if you enjoy it, there's no reason for you to do that. It's only if it'd be something that you didn't want to do or you didn't have time to do that you might Consider it. I'm not trying to talk you into it. I love it that you do this stuff by hand and I hope that people will continue to do that. By all means. I don't want to see the world filled with Vibe coded slop. That would be terrible.

B

It's going to be interesting to see what happens when, like when people are deploying code that they didn't write. I mean, that's what I, I mean, I'm going to put my name on it, you know, I don't ghost author novels because I want. If it's my, if my name is on it, it's from me. And I can't imagine shipping something that of like, of code that I didn't write, you know, that I dictated. It's like. No, I just, that's why I went.

A

On all of my. I put a lot of this stuff up on GitHub for other people want to look at it. And in every case I say it's generated by Claude code. I don't, I don't. I say, yeah, you know, Claude does it itself. It's that, you know, it says built for person who's entirely Vibe coded with cloud code. I make sure that that's clear.

B

I think that's very cool.

A

Yeah. And by the way, it writes all this documentation too, which, trust me, I. No one wants to write documentation. So it does a very nice job with that. So, I mean, I don't, I don't intend for anybody to use it but me. This is, to me, this is the stuff I'm writing for myself, not for anybody else, but I post it. Just if people are curious and because we talk about it all the time. Well, and there's also. It incense you to do that because that's also. Claude wants to store stuff on GitHub for some reason and so I go along with it, pushes it and everything. I say, okay, sure, whatever. Tell the world. Well, we were going to take a break. Did we take a break? No. You're watching Security now. And that there's Steve Gibson. I'm Leo Laporte. We're glad you're here. We're especially glad our Club Twit members are here. Thank you for making this show possible. We really appreciate it. On we go with least privilege.

B

Okay, now this is a little bit of a thinker for people. May not seem like it is, but it kind of happened as I was working on the story about Coinbase. So I think this is useful. The topic evolved as I was expounding upon the larger lesson to be learned following bleeping computers report of the second insider breach at the US's largest publicly traded crypto exchange, which, you know, it's coinbase. As I'm always interested in doing, I wanted to draw some conclusions from the underlying cause of the second breach. And I wound up confronting one of the simplest, most well known and well understood principles of security, which is simply known as least privilege. The concept of least privilege couldn't really be any simpler. It simply means not offering any more rights or privileges than are required to perform a specific task. Simple, right? But if the concept is so simple, why is it that we as an industry and users of this technology so often fail in the application of least privilege? If it's simple, it should be easy to do. The reason why we as an industry and as users so often fail in the application of least privilege is that least privilege is also least convenient. The sad and sobering truth is that today, as mature as our theories of security may be, and I believe our theories are very mature, we remain in denial about the need to apply those theories everywhere. We know how to make our systems far more secure than they actually are. You know, we're doing that, we're making them that secure might inconvenience us. We still choose convenience over security and we hope it'll be good enough. Okay, so with that preamble, let's look at a case in point and see what more might be learned. We've talked about the trouble companies are having, right, with this new practice of bpo. That's the new jargon business process outsourcing, which is the latest in business fashions. In the same way that so called pop up restaurants have been created, the idea is that it's now possible to also have pop up corporations. A couple of people who share an idea pitch their concept to an angel investor to raise some seed capital. Then, rather than embarking upon a hiring campaign to find and employ the wide range of talent and experience that they'll require, they instead assemble their operating enterprise like Lego blocks from, you know, an array of now available on site online services. The problem with this is trust. The resulting virtual enterprise lacks any core loyalty because to all of the various third parties that have been commissioned, the Commissioner is just another one of their many client customers. There cannot be any sense of institutional loyalty because there's nothing to be loyal to. Clients are just account numbers and API linkages. It really is a very different way of organizing and operating. You essentially get throwaway enterprises. So it's against this backdrop that BLEEPING Computer brings us the news of another insider breach at Coinbase originating from Coinbase's use of business process outsourcing, Bleeping Computer wrote, Coinbase has confirmed an insider breach after a contractor improperly accessed the data of approximately 30 customers, which bleeping Computer has learned is a new incident that occurred in December. A Coinbase spokesperson told Bleeping Computer, quote, last year our security team detected that a single Coinbase contractor improperly accessed customer information, impacting a very small number of users, approximately 30. The individual no longer performs services for Coinbase. The impacted users were notified last year and were provided with identity theft protection services and other guidance. We've also disclosed this incident to the relevant regulators as a standard practice. Bleepy Computer, they wrote, has learned that this is a newly revealed insider breach and is not related to the previous disclosed task. US Insider breach in January of last year. This statement comes after the scattered scattered lapses Hunters Cybercrime Group briefly posted screenshots of an internal Coinbase support interface on Telegram and then deleted the post soon after. The screenshots showed a support panel that gave access to customer information, including email addresses, names, date of birth, phone numbers, what's known as KYC Know your customer identifying screenshots like their identities, right, their driver licenses and stolen data to be passed along among different threat actors before being leaked or disclosed. So it's unclear whether this group was behind the insider breach or whether other threat actors carried it out. However, the scenario I'm sorry. However, the same threat actors previously claimed to have bribed an insider at CrowdStrike to share screenshots of internal applications. Over the past few years, they write Business Process Outsourcing BPO companies have become increasingly targeted by threat actors seeking access to customer data, internal tools or corporate networks. A business process outsourcing company is a third party firm that performs operational tasks for another organization. These tasks commonly include customer support, identity verification, IT help desk services, account management, and so forth. Because BPO employees often have access to sensitive internal systems and customer information, they have become a high value target for attackers. In the past, threat actors have exploited BPOs through bribing insiders with legitimate access, social engineering support staff to grant unauthorized access, and compromising BPO employee accounts to reach internal systems. As we've seen with CoinPass with Coinbase this year, one way BPOs are targeted is by bribing their employees to steal or share customer information. As I said, lack of loyalty to the targeted enterprise. Coinbase disclosed a similar data breach last year, later linked to external customer Support representatives employed by Task Us, an outsourcing firm that provides services to the crypto exchange. Another common tactic is social engineering attacks against outsourced IT and support desks, where threat actors impersonate employees and call BPO helplines to obtain access to internal corporate systems. In one of the most prominent cases, attackers posed as an employee and convinced a Cognizant help desk support agent to grant them access to a Clorox employee account, allowing them to breach the company's network. The incident later became the focus of a 380 million dollar lawsuit by Clorox against Cognizant. Google reported that threat actors targeted US Insurance firms in social engineering attacks on outsourced help desks to gain access to internal systems. Retailers also confirmed that social engineering attacks against support personnel enabled ransomware and data threat theft attacks. Marks and Spencer confirmed attackers use social engineering to breach its networks, while Co Op disclosed data theft following a ransomware attack that similarly abused support staff access. In response to the attacks on Marks and Spencer and Co Op retail companies, the UK government issued guidance on social engineering attacks against help desks and BPOs. In some cases, hackers target the BPO employee accounts themselves to gain access to the customer data they manage. In October, Discord disclosed a data breach that allegedly exposed data from 5.5 million unique users after its Zendesk support system instance was compromised. While the company did not confirm how its instance was breached, the threat actors told Bleeping computer that they used a compromised account belonging to a support agent employed by an outsourced business processing provider. Using this account, they downloaded Discord's customer data. This repeated abuse of outsourced support providers shows how threat actors were are increasingly bypassing vulnerability exploits and instead targeting third party companies with access to corporate networks and data. Okay, so this is a variation on the call is coming from inside the house. In this case, the call is coming from inside the house of someone you trust. The source of the inherent vulnerability is clear. In order for an external outsourced business process provider to perform their functions, they must be trusted with a connection into the outsourcing entities, network or other business processes. Although they must be trusted, they are not worthy of that trust. As I noted, an employee of an enterprise has an inherent stake in the company that employs them. We kept hearing about bribery being the way these these external companies were exposed. But an employee, as I said of an enterprise, has a stake in the company. They attend meetings with their fellow employees. They look them in the eyes, they may socialize with them after work hours, attend each other's birthday parties or those of their children. They may be on a softball team or have attended explicit team building events. They may share a department where they routinely meet, plan, participate and work side by side to meet goals. All of those things serve to create a stake in the shared welfare of the organization. But none of that exists in the hearts and minds of of subcontractors to whom that organization is just another account among many. This makes these subcontractors far more susceptible to bribery. This newfangled restructuring of organizations appears to be irreversible, right? The days of an employee starting off in the mail room and gradually working their way up over the course of five days, generations, or you know, decades to, to finally receive a gold watch and become CEO, those are long gone and they're not coming back. So how do we make this business process outsourcing work better? My hope is that everyone is learning from these initial BPO missteps and that the problems we've seen and that we are seeing are due to what I would call API over trust. In the same way that it's easier to just give someone wider permissions to a database than they actually need, it's simpler and quicker to design an API that offers more power than is needed to fulfill a specific outsourced task. For example, an external BPO which is providing help desk services may not need access to a customer's entire record. They may only actually need minimum identifying information and a subset of specific customer history. But when initially setting things up, it's quicker and easier to just give this trusted and I have that in air quotes, third party unfettered and unfiltered access to the entire customer database. After all, they're under contract, right? What could possibly go wrong? What we see is another example of the sort of finger pointing I've been highlighting recently. Whose fault is it if a subcontractor is bribed to disclose their contractor's critical information? The subcontractor is easiest to blame. But the information was still disclosed. The the subcontractor, the entity that did that, did the subcontracting, gets blamed for the breach of their systems. The question is whether that subcontractor had more access than they needed because they were able to make that disclosure. Did they only get the bare minimum that they needed which would have better protected the company providing that access? This excess privileges is not a new problem. Remember that BPOs were once called MSPs? We talked about that years ago. Managed service providers. We covered that story of a dental services MSP which had been compromised by a ransomware group. This group struck gold because the way the MSP operated was to require full access to their clients networks. The ransomware group took advantage of this unfettered network access to install ransomware and encrypt the PCs and other equipment of every one of the MSP's customers. It was a widespread disaster for the MSP and for every one of the dental offices it served. There was no defensible reason for the MSP to have fully privileged network connection to each of its clients internal networks. They didn't need that. But that was the easy path that was taken. If the access had been strictly transactional against a service provided and running on the client side, far less if any damage could have ever been done. So philosophically this is what must change. Any organization wishing to outsource services must consider the consequences of that service provider becoming a hostile entity. Maybe not by design, maybe by mistake, maybe by compromise, maybe by an insider, you know, accepting a bribery. What doesn't matter how, the question is what happens if they become a hostile entity. So instead the way to solve that is to design and provide an API linkage that will protect their interests under any circumstances, no matter what their contractors might do. A familiar example of this sort of function, because we know how to do this right. A familiar example is an hsm, the hardware security module whose internal right only private key and machinery can be employed to sign a file, while at the same time nothing and no one can exfiltrate and steal its secrets. The analogy is not perfect, but the point I wanted to make is that designing with the concept of least privilege is what should always be done. Always. In the HSM example, there was no need to allow the device's internal private key to ever be exposed, no matter how much the user of that key might be implicitly trusted. Thus the key should never be exposable. Not because it would be stolen, but because it could be. I've talked a lot about not exposing any non public service to the public Internet. This is another example where least privilege comes into play. When I've said that authentication doesn't work, I've meant that it must not be depended upon to work. I've asked why someone in North Korea, whom you almost certainly don't intend to have accessing your enterprise's network should even be given the opportunity to challenge your network's authentication system. If you are monitoring every incoming connection one by one to the publicly exposed management interface of your enterprise's firewall and a connection attempt was inbound from North Korea, would you not choose to drop its packets? Of course you would. If North Korea is being allowed to connect to your cloud services, that's not least privilege. So my point is, even though the concept of least privilege could hardly be simpler and more easily explained, it is a trivial concept. It turns out it's not trivial to actually deploy it in every instance. So it's not something that is robustly deployed in the real world. But it needs to be. I believe it's the only way forward. Through the years of this podcast, I've broadly divided problems into two categories. Right, we've got mistakes that are made, it's going to happen. And also second category, policies that are deliberate AI driven code checking reasonably promises, as we talked about last week, to finally enable us to deliver bug free code. I would argue AI fixing human errors. We're in a whole different world if it's AI code from, from the start, I, I don't put that in the same class at all. AI fixing human mistakes, like we talked about last week, that seems like a near certainty to have happen. And while that's terrifically exciting, it won't cure all our ills because failures to implement least privilege, they're not mistakes, they're policies, they're the result of decisions that were made. This means that to further improve our delivered security moving forward, we need to make the decision to far more robustly design for least privilege operations. That's how we, that's how we get where we want to go from a security standpoint and you know, stop having just, you know, breach du jour.

A

Is it related to zero trust? It's kind of like the idea of zero trust, right?

B

Yeah, yeah.

A

It's basically, you know, give it as well. It's just a fundamental insecurity. Give it as little as it needs and.

B

No, I know and except that people don't. They, you know, some company is in a hurry to get their help desk set up and say hey there. Yeah, here, you know, here's a credential that lets you log on to our database so that you're able to look up our customers. Except if that person, that contractor goes bad, you've just lost your database.

A

They don't even have to go bad. They just, you're as only as good as the weakest security practice of any contractor.

B

Right, right, exactly. And they have no loyalty to you. They keep succumbing to bribery because it's like, hey, how much money? Okay.

A

But I dimly remember the story of a, it was, I think a Electric company that still had open remote access ports to a former contractor who had left, but they never took away their privilege for remotely accessing the system.

B

And.

A

Well, of course that's a recipe for disaster. That's just. Yeah, yeah.

B

I mean we could do it because, because in movies you see people having their credentials revoked the moment that, you know, it's like, you know, give us.

A

Your pass key, security guard comes parking. Here's your box. Put your stuff in there.

B

Yeah, Yep. And you absolutely, at that point, you know, you want their password to no longer work.

A

We, you know, when we've had to terminate employees in the past, we've done that and it's, it can be very painful. And the few times that we didn't, we deeply, we deeply regretted it. And it wasn't out of maliciousness. I don't think it was more out of just, you know, not, not paying attention or whatever. And yeah, stuff, stuff disappeared and I don't know, it's just.

B

Yeah, least privilege is the easiest thing to say. But it's, but it's so easy not to do it. Yes.

A

Least because we want to trust. We want convenience, but we also want to be trusting. But when it comes to security, trust no one. Right. Steve taught us that.

B

Exactly right.

A

Steve Gibson's@grc.com that's his website. Proudly stuck in the 1990s. But it's fast and there's no JavaScript. Grc.com actually there's a little JavaScript here and there for a few things you have to do. But yep, only, only when absolutely necessary. A few things you might want to check out there, of course. Spinrite. The world's best mass storage maintenance recovery and performance enhancing utility version.

B

I will say no JavaScript. There's no JavaScript library. I wrote it all by hand, of course.

A

Yes, that's the key. Yeah, there's another, that's another example of least trust. If you're loading blobs of software from another website that you don't know and you don't examine, that's, that's a little bit too, too much privilege if you ask me. Steve doesn't do that. Get spin. Right. If you have mass storage, you need spin. Right. He also has brand new the DNS Benchmark Pro. Great way to test a variety of kind of every DNS server do you find one that really is fast where you are and that's different for everybody. That's why you need the program. Both of Those are@grc.com if you would like to get Steve's show notes emailed to you even on Super Bowl Sunday. You can. All you have to do is go to grc.com email this is a great page for doing two things. One, giving him your email address so he can whitelist you so that you can send him pictures of the week or suggestions or questions. So it's good for that. But below that, when you're given the email address, there'll be also two checkboxes, unchecked by default. One for the weekly emailing, which is the show notes, and another for a very infrequent email when there's a new product Steve wants to tell you about. Have you. Did you even send one out for DNS Benchmark Pro yet?

B

Not yet. Not ready to yet.

A

I love Steve. This is my kind of marketing. No, it's not ready yet. Tell you when. Anyway, check those two boxes. So you get those emails. What else? Oh, he's got the show, of course. What am I saying? He's got copies of the podcast. In fact, he has unique copies. He has a 16 kilobit audio version for the bandwidth and pair that's as small as it can get. He's got a 64 kilobit audio version, which sounds fine, but it is half the size of the one we offer on our website. He also has the show notes aforementioned. He also has a transcript. One of the reasons for the 16 kilobit version is he wanted a small file to send to his transcriptionist, the wonderful Elaine Ferris, the farrier. She lives out in a ranch and doesn't have a lot of bandwidth, but this way she can download it. She's a court reporter. She's very good at transcribing, makes beautiful transcripts entirely by hand. And those are available usually a few days after the show. Those are available. And all this is free, by the way, except for special been right DNS Pro. Everything else is free. He also has. That's it. Well, he has lots of other stuff. He's got shields up. He's got a bunch of free programs. Never 10. You're going to write a. You're going to have to write a never. 11. If you're going to stay on 10, you're going to have to write an. Actually, did you write a never? 11. Did you write a program to keep.

B

No, I switched to in Control.

A

In Control, that's right. That's also free.

B

So now it's generic. That way it can do never 12.

A

Also never, never, never. All this stuff handwritten and assembler for maximum performance and minimum size. Let's see what else. Well, you can get the show at our site, Twit TV SN. We have 128 kilobit audio, which sounds, I'll be frank, not one whit better than the 64 kilobit audio stuff Steve has, despite it's having twice the size. Ask Nyquist why. I don't know why. Nykvist knows. The reason we make that big one is Apple. Don't ask. They want larger file sizes. We also have video. No one else but us. We have the video. If you want to see Steve's mustache at work, that's all. At TWiT TV SN, there's also a YouTube channel dedicated to the video. Actually, you can clip it and share it with friends and family. That's the best way to do that. Subscribe in your favorite podcast player. That's probably the best way to get the show automatically. You don't have to think about it. You'll get it as soon as we're done. There's audio and video there too. You can get either or both. Leave us a nice review if you would. If you're a podcast client lets you do that. If you want to watch us live, we do the show right after Mac break weekly of a Tuesday, typically 1330 Pacific, 1630 East Coast Time. That would be 2130 UTC. The streams are live on the discord for the club members. YouTube, Twitch, X.com, facebook, LinkedIn and Kick. All of those places. You can watch us live. Chat with us live. I'm watching the chat. I guess that's everything that needs to be said. Steve, thank you for being here. We really appreciate it.

B

And we'll see.

A

See you next week on Security now.

B

Right o. See you on the 17th.

A

Hey, everybody, it's Leo Laporte. You know about MacBreak Weekly, right? You don't? Oh, if you're a Macintosh fan or you just want to keep up what's going on with Apple, this is the show for you. Every Tuesday, Andy Inocco, Alex Lindsey, Jason Snell and I get together and talk about the week's Apple news. It's an easy subscription. Just go to your favorite podcast client and search for Mac Break Weekly or visit our website, TWiT TV MBW. You don't want to miss a week of Mac Break Weekly Security Now.