Smashing Security

Graham Cluley & Carole Theriault

A helpful and hilarious take on the week's tech SNAFUs. Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast... Winner of the best and most entertaining cybersecurity podcast awards in 2018, 2019, 2022, 2023, and 2024, Smashing Security has had over ten million downloads. Past guests include Garry Kasparov, Mikko Hyppönen, and Rory Cellan-Jones. Follow the podcast on Twitter at @smashinsecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK). This podcast uses the following third-party services for analysis: OP3 - https://op3.dev/privacy read less

Our Editor's Take

The Smashing Security podcast explores everything from cybercrime to scammers. It does more than educate listeners on crypto technology, phishing scams, and internet fraudsters. Which other cyber security podcast has an episode titled "One cup, two hotel guests"? With its blend of hilarious chat and insight, it's no wonder it's received so much acclaim. It has won "Best Security Podcast" and "Most Entertaining" honors. The podcast has millions of downloads.

The podcast hosts are industry experts Graham Cluley and Carole Theriault. Graham is a blogger, researcher, and speaker, passionate about computer security. One of his claims to fame is writing the first version of an antivirus program for Windows. He works with companies for protection against hacking, security threats, and data breaches. Carole created Sophos Naked Security. She cohosts Sticky Pickles, a podcast about hilarious listener dilemmas.

Each podcast episode discusses the latest news in cybersecurity. One episode questions whether a deepfake version of Tom Hanks is better than the real Tom Hanks. Joining the discussion is podcaster Maria Varmazis. The panel reviews news of an ad shared on social media using an image of the actor's face without his permission. They discuss other celebrities affected by AI scams, including Bruce Willis. Raising awareness of these deepfake ads only increases their visibility. What does this mean for future content creation? Which technology company will create a solution for this issue first?

Consultancy founder Mark Stockley joins the podcast for a discussion on internet privacy. He debates the inevitability of people reusing passwords and creating weak ones. Mark explains that when people ignore the advice to create strong passwords, they do the same for using password managers.

Smashing Security shares entertaining discussions about the world of internet security. Listeners should expect entertaining tangents, adult themes, and rude language.

read less
TechnologyTechnology
NewsNews
ComedyComedy
Tech NewsTech News

Episodes

Pasta spies and private eyes, and are you applying for a ghost job?
2d ago
Pasta spies and private eyes, and are you applying for a ghost job?
Mamma Mia! A major hacking scandal in Italy has expanded to include alleged involvement from Israel and the Vatican, and just why are companies advertising jobs that don't exist?All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Massive hack-for-hire scandal rocks Italian political elites - Politico.Dossieraggi, i contatti con il Mossad e i dati passati al Vaticano. “Aiutiamo la Chiesa contro la Russia o no?” - La Repubblica.That position you just applied for might be a 'ghost job' that'll never be filled - The Register.Ghost jobs: why do 40% of companies advertise positions that don’t exist? - The Guardian.Job boards are still rife with 'ghost jobs'. What's the point? - BBC.How To Spot Ghost Jobs And Make Your Job Search More Efficient - Forbes.What Are Ghost Jobs and How Can You Avoid Them? - Tech.coThat job you applied for might not exist. Here's what's behind a boom in "ghost jobs." - CBS News.The Coming Storm - BBC Radio 4.Things fell apart - BBC Sounds.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!Flashpoint - Access the industry’s best threat data and intelligence.SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or
The secret Strava service, deepfakes, and crocodiles
31-10-2024
The secret Strava service, deepfakes, and crocodiles
In this week's episode your hosts practice standing on one leg, Carole gives Graham a deepfake quiz, and we investigate how Strava may be exposing the movements of world leaders.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Smashing Security #063: Carole’s back.Privacy of fitness tracking apps in the spotlight after soldiers' exercise routes shared online - We Live Security.Smashing Security #330: Deepfake Martin Lewis, and a deadly jog in the park.How Emmanuel Macron can be tracked - Le Monde.How Emmanuel Macron can be tracked - YouTube.The Pentagon Wants to Use AI to Create Deepfake Internet Users - Intercept.Is AI eroding democracy ahead of the US election? - BBC News.Fooled twice: People cannot detect deepfakes but think they can - PMC.Detect Fakes - Kellogg Northwestern.DON'T LET AI STEAL YOUR VOTE! - YouTube.Deepfakes fool more than half of Americans, UVU study shows - KLS News radio.Crocodiles Of The World.Here's How Long You Should Be Able To Stand On 1 Leg By Age - Huffington Post.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:BlackBerry - Tune in and empower your team with the knowledge to stay connected, no matter what crisis. Learn more about BlackBerry's critical event management solutions.1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us...
When security firms get hacked, and your new North Korean remote worker
24-10-2024
When security firms get hacked, and your new North Korean remote worker
The SolarWinds have returned to haunt four cybersecurity companies who tried to hide their breaches and ended up with their trousers around their ankles, and North Korea succeeds in getting one of its IT workers hired... but what's their plan?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:SolarWinds Sunburst supply chain attack - Wikipedia.Rep. Katie Porter slams SolarWinds for its poor passwords - Twitter.SEC Charges Four Companies With Misleading Cyber Disclosures - SEC.Western firm hacked by North Korean cybercriminal hired as remote IT worker - Computing.Engaging with a Remote Workforce: Statistics and Strategies for Success - Government Events.67% Of U.S. Employers To Lose Employees To Remote Work In 2024 - Forbes.A company's remote-working hire turns out to be in North Korea. He tried to hold it to ransom - Business Insider.US company accidentally hires North Korean for remote work, gets blackmailed when they try to fire him - IBTimes.Watch “Undercover: Exposing the Far Right” - Channel 4.Undercover film exposing UK far-right activists pulled from London festival - The Guardian.Kermode and Mayo’s Take - YouTube.The Fear of God: 25 Years of the Exorcist – BBC iPlayer.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000...
WordPress vs WP Engine, and the Internet Archive is down
17-10-2024
WordPress vs WP Engine, and the Internet Archive is down
WordPress's emperor, Matt Mullenweg, demands a hefty tribute from WP Engine, and a battle erupts, leaving millions of websites hanging in the balance. Meanwhile, the Internet Archive, a digital library preserving our online history, is under siege from hackers.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:WP Engine is not WordPress - WordPress.Secure Custom Fields - ​​WordPress.Tweet from Advanced Custom Fields.Advisory: Advanced Custom Fields changes - Tim Nash.WordPress saga escalates as WP Engine plugin forcibly forked and legal letters fly - The Register.Internet Archive hacked, data breach impacts 31 million users - Bleeping Computer.The Internet Archive is still down but will return in ‘days, not weeks’ - The Verge.Dimsdale podcasts - OTR radio drama comedy and more.Jeff Goldblum’s furiously fun Greek gods drama is a masterpiece - The Guardian.KAOS - Netflix.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!Flashpoint - Access the industry’s best threat data and intelligence.SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!FOLLOW US:Follow us on
Vacuum cleaner voyeur, and pepperoni pact blocks payout
10-10-2024
Vacuum cleaner voyeur, and pepperoni pact blocks payout
Join us as we delve into the world of unexpected security breaches and legal loopholes, where your robot vacuum cleaner might be spying on you, and ordering a pizza could cost you your right to sue.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:We hacked a robot vacuum — and could watch live through its camera - ABC News.Their Uber Driver Crashed. A Pizza Order Unraveled Their Injury Lawsuit - NY Times.A court blocks a couple from suing Uber over a crash, citing terms and conditions - NPR.Taken for a Ride: Parents Can't Sue Uber Over Crash After Daughter's Uber Eats Order - Law.incNew Jersey Court Bars Uber Crash Victims from Lawsuit, Citing App Agreement - The Legal Journal.Couple Seriously Injured in Uber Crash Blocked From Court by Uber Eats Terms - The Insurance Journal.Disney axes bid to stop wrongful death lawsuit over Disney+ terms - BBC.Sherwood - BBC iPlayer.Chocolate Guinness Cake - Nigella.The Best Banana Cake I've Ever Had - Sally's Baking Addiction.My Favorite Carrot Cake Recipe - Sally's Baking Addiction.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:SentinelOne - secure and protect every aspect of your cloud in real-time.1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or
Breaches in your genes, and Kaspersky switcheroo raises a red flag
03-10-2024
Breaches in your genes, and Kaspersky switcheroo raises a red flag
From family tree to jail cell? A hacker is alleged to have exploited information on genealogy websites to steal millions from public companies. Meanwhile, Kaspersky's US customers are wondering - what on earth is UltraAV?All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:U.K. National Charged with Multimillion-Dollar Hack-to-Trade Fraud Scheme - US Department of Justice.Sophos punts anti-virus for Klingons - The Register.Designating Kaspersky Lab Leadership in Response to Continued Cybersecurity Risks - US Department of Treasury.Kaspersky says Uncle Sam snubbed its verification proposal - The Register.Use Kaspersky Antivirus Software? You'll Be Migrated to Pango's UltraAV  - PC Mag. Kaspersky software replaced by 'UltraAV' on some US PCs -   The Register.Need Instructions on Refunds for those who bought multi-year subscriptions - Kaspersky.US bans Kaspersky antivirus software for alleged Russian links - BBC News.Who gave you permission to put UltraAV on my computer? - Kaspersky Total Security.MusicBrainz Picard - Cross-platform music tagger powered by the MusicBrainz database.100 Chefs Will Slice Through the Competition in Culinary Class Wars - Netflix.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:SentinelOne - secure and protect every aspect of your cloud in real-time.1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing
The $230 million crypto handbag heist, and misinformation on social media
26-09-2024
The $230 million crypto handbag heist, and misinformation on social media
Two men are accused of stealing almost a quarter of a billion dollars from one person's cryptocurrency wallet, but why on earth would they be handing out handbags to strangers? And social media comes under the spotlight once more, as we ask if you are delving into misinformation in your most private moments...All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:ZachXBT’s thread on Twitter.Indictment Charges Two in $230 Million Cryptocurrency Scam - Department of Justice.Two men arrested one month after $230 million of cryptocurrency stolen from a single victim - Bitdefender.Skylar Harrison tells her handbag story - TikTok.Social media’s role in fueling extremism and misinformation in a divided political climate - PBS News.Misinformation on social media - statistics & facts - Pew Research.Social Media and News Fact Sheet, 2024  - Pew Research Center."Hyperactive" by Lasse Gjertsen - YouTube.Cribbage JD - Play Online - Cardsjd.Paddlers Cribbage - L.L. Bean.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:SentinelOne - secure and protect every aspect of your cloud in real-time.1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or
TFL security derailed, and is Trump the king of crypto?
19-09-2024
TFL security derailed, and is Trump the king of crypto?
Transport for London (TfL) suffers a cybersecurity incident and tells its 30,000 staff they will all have to their identities verified... in-person. Who might have been behind the attack and why? Meanwhile, Donald Trump's curious relationship with cryptocurrency is explored.All this and Demi Moore is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.(This episode was recorded before the former US President survived a second assassination attempt)Episode links:TFL cybersecurity incident announcement.TFL Employee Hub.DICK'S shuts down email, locks employee accounts after cyberattack - Bleeping Computer.MGM Resorts shuts down IT systems and slot machines go quiet following "cybersecurity incident" - Hot for Security.Teenage suspect in MGM Resorts hack arrested in Britain - The Record.Arrest made in NCA investigation into Transport for London cyber attack - NCA.Donald Trump Prepares to Unveil World Liberty Financial, a Cryptocurrency Business  - The New York Times.Behind the Trump Crypto Project Is a Self-Described ‘Dirtbag of the Internet’ - Bloomberg. Cryptocurrency price on July 22: Bitcoin hits $68,000 level, Dogecoin, Avalanche surge up to 11% - The Economic Times.Trump vows to make US ‘world capital of crypto,’ taps Musk for new task force - CoinTelegraph.What bankers need to know about Trump's World Liberty Financial - Yahoo! Finance. Bitcoin soars to two-week high after Trump attack - Reuters.Trump pitches himself as 'crypto president' at San Francisco tech fundraiser -  Reuters.Aave fork on...
A room with a view, AI music shenanigans, and a cocaine bear
12-09-2024
A room with a view, AI music shenanigans, and a cocaine bear
It's a case of algorithm and blues as we look into an AI music scam, Ukraine believes it has caught a spy high in the sky, and a cocaine-fuelled bear goes on the rampage.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Ukrainian detained for allegedly installing CCTV cameras to aid Russian attacks - The Record.Russia calls for restrictions on surveillance cameras, dating apps in cities under attack from Ukraine - The Record.Christo and Jeanne-Claude art projects.North Carolina Musician Charged With Music Streaming Fraud Aided By Artificial Intelligence - United States Department of Justice.Man Arrested for Creating Fake Bands With AI, Then Making $10 Million by Listening to Their Songs With Bots - The Futurist.Kobo Clara BW ereader - Kobo.Cocaine Bear: Why? - The Atlantic.Cocaine Bear Official trailer - YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management – Secure every sign-in for every app on every device.Sysdig - Secure your cloud in real time. Detect, investigate, and respond to threats at cloud speed.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!FOLLOW US:Follow us on Twitter at @SmashinSecurity, or
The Godfather club, and AirTags to the rescue
05-09-2024
The Godfather club, and AirTags to the rescue
There's a whole new dating scam that could mean you end up out of pocket (or beaten up) after a first date with a glamorous admirer, and a woman in Los Alamos uses an Air Tag to entrap a thief.Plus - don't miss our featured interview with Maya Levine of Sysdig.All this, and a very bad Cockney accent, in the latest edition of the "Smashing Security" podcast by industry veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Mail Theft Suspect Apprehended Using AirTag - Santa Barbara County Sheriff’s Office.Google and Apple deliver support for unwanted tracking alerts in Android and iOS - Google Security blog.Apple and Google deliver support for unwanted tracking alerts in iOS and Android - Apple.Barclays Scams Bulletin: Men more likely to fall victim to romance scams, while women lose more money - Barclays.3 men trapped by same woman: Journalist on modus operandi of dating app scams -  India Today. Mumbai club under fire for 'dating scam' after man gets Rs 61,000 bill - India News.Romance scams in 2024 + online dating statistics - Norton.Tips for romance scams - Better Business Bureau.What to know about romance scams - Consumer Advice.The Godfather club dating app scam in Mumbai - YouTube.What accent does Butcher have in ‘The Boys’? - NME.Shokz bone conduction headphones - Shokz.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management - Secure every sign-in for every app on every device.Sysdig - Secure your cloud in real time. Detect, investigate, and respond to threats at cloud speed.Material Security – email security that covers the full threat landscape –
Smashing Security presents The AI Fix: An AI cookery dumpster fire, the ARC prize, and a creepy new AI friend
06-08-2024
Smashing Security presents The AI Fix: An AI cookery dumpster fire, the ARC prize, and a creepy new AI friend
While "Smashing Security" is on its summer holiday, here's a chance to listen to an episode of its sister show - "The AI Fix".In episode ten of The AI Fix, Graham attempts to say "quinoa", Mark draws a line in the amper-sand, ChatGPT becomes an expert in solar panels and bomb disposal, and our hosts watch a terrifying trailer for a creepy new AI friend.Graham discovers that the world of AI cookery is a soggy, limey mess, and learns an unusual trick for making a great mojito, while Mark pits his co-host against the cleverest AI brains in the world.Episode links:OpenAI starts rollout of Advanced Voice Mode.UK Government shelves £1.3bn UK tech and AI plans.Friend trailer.Artificial intelligence has hard time with accents.Netherlands court uses ChatGPT to decide things.Argentina will use AI to ‘predict future crimes’ but experts worry for citizens’ rights.Twitter thread on crockpot cookbook.Get ready for AI to rip off your favorite cookbooks.‘One of the most disgusting meals I’ve ever eaten’: AI recipes tested.This cookbook author was a best-seller on Amazon — but she may not even be human.ARC Prize.ARC Prize leaderboard.On the Measure of Intelligence research paper by François Chollet.The AI FixThe AI Fix podcast is presented by Graham Cluley and Mark Stockley.Learn more about the podcast at theaifix.show, and follow us on Twitter at @TheAIFix.Never miss another episode by following us in your favourite podcast app. It's free!Like to give us some feedback or sponsor the podcast? Get in touch.This...
CrowdStrike, Dark Wire, and the Paris Olympics
25-07-2024
CrowdStrike, Dark Wire, and the Paris Olympics
Computers blue-screen-of-death around the world! The Paris Olympics is at risk of attack! And the FBI pull off the biggest sting operation in history by running a secret end-to-end encrypted messaging app!All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by industry veterans Graham Cluley and Carole Theriault, joined this week by cybersecurity journalist and the author of “Dark Wire”, Joseph Cox.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:How a single IT update caused global havoc - BBC News.Anti-Virus Software Sees Self as Malware, Deletes Itself - NBC News report about Sophos snafu in 2012.Tweet about CrowdStrike outage by Kaspersky - Twitter.“Dark Wire” by Joseph Cox.Inside the Biggest FBI Sting Operation in History - WIRED.Trump shooter's online activity shows searches of rally site, use of encrypted platforms, officials say - CBS News.Mass Surveillance - Privacy International.338 sites internet frauduleux de revente de billets recensés à quelques semaines du début de la compétition - France Info.From wiretapping to geolocation data collection: AI mass surveillance for the Paris Olympics draws privacy concerns - Fast Company.Heading to the Paris Olympics? Don't Fall for These Scams - PC Mag.AI mass surveillance at Paris Olympics – a legal scholar on the security boon and privacy nightmare - Scientific American.AI mass surveillance at Paris Olympics – a legal scholar on the security boon and privacy nightmare - The Conversation.Paris 2024: Medal table predictions, facts, opening day schedule and records that could be broken - Euronews.Paris Olympics 2024: Your ultimate guide - The Telegraph.
Trump assassination conspiracies, Squarespace account hijacks, and the butt stops here
18-07-2024
Trump assassination conspiracies, Squarespace account hijacks, and the butt stops here
Social media fuels conspiracies galore after Donald Trump is shot at a rally, cryptocurrency websites are hijacked after a screw-up at Squarespace, and our guest takes a close look at bottoms on Instagram.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Zoë Rose.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Killed by Google.Squarespace Enters Definitive Agreement to Acquire Google Domains Assets - Squarespace.A Squarespace Retrospective, or How to Coordinate an Industry-Wide Incident Response - Security Alliance.Trump shooting: all seven conspiracy theories examined - The Telegraph.Fact-checking the wild conspiracy theories related to the attempted Trump assassination - PBS News.We fact-checked some of the rumors spreading online about the Trump assassination attempt - Reuters.Minutes after Trump shooting, misinformation started flying. Here are the facts - AP News.Joy Reid suggests Trump couldn't 'avoid the consequences' of his own rhetoric after assassination attempt - Fox News.The Gunshots Rang Out. Then the Conspiracy Theories Erupted Online - New York Times.Trump assassination attempt – News, Research and Analysis - The Conversation.Douglas is Cancelled - ITV.Douglas Is Cancelled review – you might hate this show for daring to exist - The Guardian.Klappbollerwagen 'Cruiser' - PinoLino.Videos for Cats to Watch -  YouTube.Cat TV for Cats to Watch -  YouTube.
Teachers TikTok targeted, and fraud in the doctors’ waiting room
11-07-2024
Teachers TikTok targeted, and fraud in the doctors’ waiting room
Execs at a health tech startup are sentenced to jail after a massive ad fraud, and a school is shaken after teachers are targeted via TikTok.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Plus don't miss our featured interview with Jason Meller of 1Password.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Outcome, a hot tech startup, misled advertisers with manipulated information, sources say - Wall Street Journal.Three Former Executives Sentenced for $1B Corporate Fraud Scheme - US Department of Justice.Graham dancing - TikTok.Students Target Teachers in Group TikTok Attack, Shaking Their School - The New York Times.“Thank you very much indeed”Presumed Innocent — Official Trailer - Youtube.Presumed Innocent - Apple TV+.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management – Secure every sign-in for every app on every device.mWISE - Don't miss the cybersecurity conference built by practitioners, for practitioners. mWISE runs September 18 – 19 2024 in Denver.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!FOLLOW US:Follow us on Twitter at @SmashinSecurity, or Mastodon, or on the Smashing Security subreddit, and
Private nights, evil twins, and crypto home invasions
04-07-2024
Private nights, evil twins, and crypto home invasions
Apps can let you spy on strangers in bars, a gang of cryptocurrency thieves turns to kidnap and assault, and have you joined the mile-high evil twin club?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley of the brand-new "The AI Fix" podcast (co-hosted with Graham!).Talk about nepotism.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Hoos Out Tonight? Dundee medical student launches new app which reveals ‘hot’ pubs - The Courier.‘It’s completely invasive’: New app lets you spy on SF bars to see if they’re poppin’ - San Francisco Standard.Florida Man Convicted in Violent Crypto Theft Spree - Crypto Daily.Inside a Violent Gang's Ruthless Crypto-Stealing Home Invasion Spree - Wired.Man charged over creation of ‘evil twin’ free WiFi networks to access personal data  - Australian Federal Police.Police allege 'evil twin' in-flight Wi-Fi used to steal info - The Register.Australian charged for ‘Evil Twin’ WiFi attack on plane - Bleeping Computer.Suno - make a song about anything.The AI Fix podcast - hosted by Graham Cluley and Mark Stockley.Putty Pals - Nintendo Switch.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management – Secure every sign-in for every app on every device.SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!FOLLOW US:Follow us on Twitter at...
Julian Assange, inside a DDoS attack, and deepfake traumas
27-06-2024
Julian Assange, inside a DDoS attack, and deepfake traumas
Wikileaks's Julian Assange is a free man, deepfakes cause trouble in the playground, and we hear hot takes about ransomware and tales from inside a devastating denial-of-service attack.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Eleanor Dallaway.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Julian Assange lands in Australia a free man - BBC News.Smashing Security episode 245: The Julian Assange assassination plot, and IoT toilets.Kidnapping, assassination and a London shoot-out: Inside the CIA's secret war plans against WikiLeaks - Yahoo News.Surprise! WikiLeaks won’t just hand over details of zero-day vulnerabilities to tech firms - Graham Cluley.Tubthumping (Q3 2021 Issue) - Infosecurity Magazine.Infosecurity Magazine suffering ‘significant’ DDoS attack - Cybernews.Infosecurity Magazine is Back Online! - Infosecurity Magazine.YouTube now lets you report AI deepfakes of yourself - MSN.Two private schools face police probe over claims pupils used AI to 'create deepfake porn images of up to a dozen girls' - Daily Mail. We're calling on the next government to protect women and girls from image-based abuse - Glamour Magazine. Deepfakes as a Security Issue: Why Gender Matters - WiisGlobal.AI poses disproportionate risks to women - Brookings.'Violating and dehumanising': How AI deepfakes are being used to target women - Euronews.Snapshot Paper - Deepfakes and Audiovisual...
An unhealthy data dump, railway surveillance, and a cheater sues Apple
20-06-2024
An unhealthy data dump, railway surveillance, and a cheater sues Apple
There's a wee data breach with unhealthy implications in Scotland, privacy has gone off the rails in the UK, and a cheater blames Apple for his expensive divorce.All this and much more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Lianne Potter of the "Compromising Positions" podcast.Plus don't miss our featured interview with Abhishek Agrawal, CEO of Material Security.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Cyber attacks update - NHS Dumfries & Galloway.J Paul Getty - Wikipedia.Cyber expert urges against 'panic' over NHS data leak - BBC News.“Don’t panic” - Corporal Jones from Dad’s Army - YouTube.All households in Scottish region to get alert about hackers publishing stolen medical data - The Record.Amazon-Powered AI Cameras Used to Detect Emotions of Unwitting UK Train Passengers - Wired.Man ludicrously blames Apple for his wife catching him communicating with prostitutes - Apple Insider.Businessman sues Apple after wife finds ‘deleted’ iPhone messages to prostitute - LBC.‘Tech made me do it’ is no excuse for adultery - The Times.Is it DNS?“My name is Barbra” - Amazon.”I'm Glad My Mom Died” by Jennette McCurdy - Simon & Schuster.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management – Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 10% off!Material Security – email security that covers the full threat landscape – stopping new flavors of phishing and pretexting attacks in their tracks, while also protecting accounts and data from exploit or exposure.SUPPORT...
iOS 18 for cheaters, and a model cop extortionist?
13-06-2024
iOS 18 for cheaters, and a model cop extortionist?
Apple announces a new privacy feature in iOS that will allow you to hide and lock away your apps - but will it be philanderers who benefit the most? And an ex-police officer is arrested for extortion.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Graham’s video thanking people for voting for “Smashing Security” - Twitter.iOS 18 makes iPhone more personal, capable, and intelligent than ever - Apple.Apple's new iOS 18 feature is being called 'a cheater's paradise' - Daily Mail.2 Accused In Internet Extortion Scheme Against Boss - Patch.District Attorney: Ex-police officer turned model among duo arrested in Orange County - Westchester News.Former N.Y. cop, internet model Ally Thueson arrested for extortion - NY Daily News. Extortion - FindLaw.Smile politely, nod awkwardly: greeting people you barely know - University Times.How to pass people in hallway without awkwardness? - Reddit.How Long Should a Great Kiss Last? - Psychology Today.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:1Password Extended Access Management - Secure every sign-in for every app on every device.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 10% off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or
Crashing robo-taxis, and name-dropping rappers
06-06-2024
Crashing robo-taxis, and name-dropping rappers
Drones, some coloured cardboard, and a piece of tinfoil may be all the kit you need to crash a robot-driven taxi, and a rapper is accused of using Justin Bieber's name to defraud a TV company.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Riding Baidu's self-driving robo-taxi - YouTube.Malicious Attacks against Multi-Sensor Fusion in Autonomous Driving - Research paper.Researchers warn robot cars can be crashed with tinfoil and paint daubed on cardboard - The Register.Gang of Hackers Tries to Steal Baidu’s Driverless Car Secrets - Bloomberg.Rapper Sean Kingston agrees to return to Florida, where he and mother are charged with $1M in fraud - AP News.Sean Kingston Extradited From California to Florida in Fraud and Theft Case - Entertainment Tonight.Rapper Sean Kingston, his mother arrested on fraud charges after SWAT raid at his Southwest Ranches home - Sun Sentinel.What is fraudulent use of personal identification information? - Pumphrey Law.Google’s AI really is that stupid, feeds people answers from The Onion - AV Club.Some of Google’s “best” AI search results - Twitter.Google Rolls Back A.I. Search Feature After Flubs and Flaws - NY Times.Sure, Google’s AI overviews could be useful – if you like eating rocks - The Guardian.Citymapper.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 10% off!