Summary: <p>More Zero-day exploits in Windows 10, publicly exposed Docker Engine APIs, Google's plan to fix Android, the DoD is expanding its existing "Hack the Pentagon" bug-bounty program to include hardware assets, the going rate for DDoS-for-Hire, and Steve has the answer to our vending machine conundrum from last week.</p> <p>We invite you to read our <a href="https://www.grc.com/SN/SN-687-Notes.pdf">show notes</a>.</p> <p><strong>Hosts:</strong> <a href="https://twit.tv/people/leo-laporte">Leo Laporte</a> and <a href="https://twit.tv/people/steve-gibson">Steve Gibson</a></p> <p>Download or subscribe to this show at <a href="https://twit.tv/shows/security-now">https://twit.tv/shows/security-now</a>.</p> <p>You can submit a question to Security Now! at the <a href="https://www.grc.com/feedback.htm" target="_blank">GRC Feedback Page</a>.</p> <p>For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: <a href="https://www.grc.com/securitynow.htm" target="_blank">grc.com</a>, also the home of the best disk maintenance and recovery utility ever written <a href="https://www.grc.com/sr/spinrite.htm" target="_blank">Spinrite 6</a>.</p> <p><strong>Sponsors:</strong></p><ul> <li><a href="http://Prilock.com/twit">Prilock.com/twit promo code LEO</a></li> <li><a href="https://securitynow.cachefly.com">securitynow.cachefly.com</a></li> <li><a href="http://ITPro.TV/securitynow">ITPro.TV/securitynow - use code: SN30</a></li> </ul>
