Port Knocking - Wyze Gets Spanked, FinFisher Bites the Dust, Spring4Shell, LAPSUS$ Update

• Picture of the Week.
• 0-Day Watch.
• Spring Forward (Java: Spring4Shell)
• QNAP and the OpenSSL DoS vulnerability.
• Sophos has a 9.8.
• CISA orders federal civilian agencies to patch the Sophos vulnerability.
• Browser-in-the-browser.
• The supply-chain attacks on NPM have been growing.
• FinFisher bites the dust.
• A LAPSUS$ in judgment.
• Not so Wyze.
• Closing The Loop.
• Port Knocking.

We invite you to read our show notes at https://www.grc.com/sn/SN-865-Notes.pdf

Hosts: Steve …

finfisher knocking port spring4shell update wyze