Detailed
Compact
Art
Reverse
July 1, 2020
Who's been dressing Robox players up in red baseball caps? Which ransomware victim's negotations got spied on by the media? And should Jason Bieber think twice before touching his hat? Oh, and we need to talk about squirrels... All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by John Hawes. Visit https://www.smashingsecurity.com/185 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: John Hawes.Sponsored By:Authentic8: Silo for Research (Toolbox) from Authentic8 is a secure and anonymous web browsing solution that enables threat intelligence, security, and public safety professionals to conduct research, collect evidence, and analyze data across the open, deep and dark web. To learn how Silo for Research enables teams to timely and efficiently investigate, while ensuring maximum security and oversight to ensure compliance - including GDPR - go to smashingsecurity.com/authentic8LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Roblox accounts being hacked in support of Trump re-election — Bleeping Computer.Add 2-Step Verification to Your Roblox Account — Roblox.Ransomware Groups Promise Not to Hit Hospitals Amid Pandemic — Wired.NetWalker Ransomware - What You Need to Know — Tripwire.Update on IT Security Incident at UCSF — UC San Francisco.How hackers extorted $1.14m from University of California, San Francisco — BBC News.Pizzagate conspiracy theory — Wikipedia.A TikTok Twist on ‘PizzaGate’ — The New York Times.‘PizzaGate’ Conspiracy Theory Thrives Anew in the TikTok Era — The New York Times.TikTok Teens Are Obsessed With Pizzagate — The Daily Beast.Building the Perfect Squirrel Proof Bird Feeder — YouTube.DARK Season 1 Trailer — YouTube.DARK - The Official Guide — Netflix.Conan Doyle estate sues Netflix for giving Sherlock Holmes too many feelings — The Verge.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 24, 2020
A conspiracy spreads on social media about Coronavirus tracing apps, US police find decades' worth of sensitive data leaked online, and is there a Bitcoin bonanza to be had from watching Elon Musk YouTube videos? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by BBC technology reporter Zoe Kleinman. Visit https://www.smashingsecurity.com/184 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Zoe Kleinman.Sponsored By:MetaCompliance: Create a more security-conscious workforce with MetaCompliance's Cyber Security Awareness for Dummies book. Download it for free at smashingsecurity.com/cyberawareLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:How photographs are airbrushed — A 2010 BBC News article, starring Zoe Kleinman.Elon Musk Bitcoin vanity addresses used to scam users out of $2 million — ZDNet.Kate Winslet responds to Bitcoin scam faking her endorsement — Decrypt.Bitcoin scam uses Prince Harry, Meghan Markle to dupe would-be investors — Decrypt.Covid-19 tracing tool on smartphones is 'not app' — BBC News.‘BlueLeaks’ Exposes Files from Hundreds of Police Departments — Krebs on Security.Koko Analytics — A privacy-friendly analytics plugin for WordPress.Fathom — Fast, simple and privacy-focused website analytics.Upload trailer — YouTube.Backspace and beyond — Audioboom.The Magnus Archives — Horror podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 17, 2020
A TV gameshow with cash prizes if you're obeying Coronavirus lockdown rules, ex-Ebay staff charged in crazy cyberstalking case, and when the wrong cyclist was accused by the internet bearing pitchforks. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/183 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:MetaCompliance: Create a more security-conscious workforce with MetaCompliance's Cyber Security Awareness for Dummies book. Download it for free at smashingsecurity.com/cyberawareLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Mr Blobby — Wikipedia.Noel's House Party — Wikipedia.A man is surprised at home by Noel's House Party — YouTube.Bahrain, Kuwait and Norway contact tracing apps among most dangerous for privacy — Amnesty International.Coronavirus: Alarm over 'invasive' Kuwait and Bahrain contact-tracing apps — BBC News.‘Are You At Home?’ Winner Selection Rules — Bahrain's Information & eGovernment Authority.Bahrain BeAware — iOS App Store.Bahrain BeAware — Google Play Store.Six Former eBay Employees Charged with Aggressive Cyberstalking Campaign Targeting Natick Couple — Department of Justice.Ex-EBay CEO's 'Inappropriate' Messages Played Role in Ouster — TheStreet.MAMIL throws a tantrum — Twitter.Maryland cyclist arrested for assaulting 3 people posting Black Lives Matter flyers — CNN.Smashing Security episode 063: Carole's back! — In which we discuss privacy issues involving fitness trackers.What It’s Like to Get Doxed for Taking a Bike Ride — New York magazine.Staged — BBC iPlayer.The Mars Challenge by Alison Wilgus — Macmillan.Mars trip to use astronaut poo as radiation shield — New Scientist.Culture quiz: from Bob Holness 007 to the Daily Mail's feast of filth — The Guardian.Quizzes — The Guardian.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 10, 2020
Graham finds himself in hot water with a security firm after a data breach, Carole discusses credit card fraud, and we have a pleasant surprise for Thom Langford, who appears to have mostly agreed to be a guest to promote his own podcast. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Host Unknown's Thom Langford. And don't miss our featured interview with Robbie O'Brien of MetaCompliance, all about the new book he's written - Cyber Security Awareness for Dummies. Visit https://www.smashingsecurity.com/182 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Robert O'Brien and Thom Langford.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.MetaCompliance: Create a more security-conscious workforce with MetaCompliance's Cyber Security Awareness for Dummies book. Download it for free at smashingsecurity.com/cyberawareSupport Smashing SecurityLinks:Security firm leaves more than five billion records exposed on unsecured database — Graham Cluley."Following a legal threat from ███████ ████ I have removed their name from this article on my site..." — Graham Cluley on Twitter.Keepnet Labs confirms contractor exposed 'data breach database' of 5 billion records — Verdict.Public Statement in Relation to Data Briefly Exposed on an ElasticSearch Database — Keepnet Labs.After threatening me with legal action, Keepnet Labs finally issues statement over data breach — Graham Cluley.Goodbye Naked Security? — Graham Cluley.US Military Could Lose Space Force Trademark to Netflix Series — CBR.Space Force review: astonishingly bad show — The Verge.The number of credit card scams continues to soar during the pandemic — Verdict.Pandemic Brings Huge Increases In Card Fraud And Mobile Banking — Forbes.Credit Card Fraud During the Pandemic — Consumer Reports.Credit Card Fraud — Advice from the FBI.How to Reduce Credit Card Fraud — The New York Times.Ian's Shoelace Site – IntroductionMagnet – Window manager for Mac.The Host Unknown Podcast.DEVS — BBC iPlayer.Cyber Security Awareness for Dummies — A free book for listeners from MetaCompliance.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 3, 2020
Police are hoping to stop kids becoming cybercriminals by bombarding them with Google Ads, phishers rub their hands in glee at the NHS track and trace service, and just how does a nano-layer of quantum holographic catalyzer technology make a USB stick cost hundreds of pounds? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley. Visit https://www.smashingsecurity.com/181 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Mark Stockley.Sponsored By:Deep Instinct: Most people agree that the most effective way to reduce the cost of an attack is to prevent it from happening in the first place! Deep Instinct strives to prevent all known and unknown threats using deep learning, making detection and response automated, fast and effective for any threat that cannot be prevented. Check out a report by the Ponemon Institute, which studied the cost savings of adopting an efficient prevention model. Go grab it at smashingsecurity.com/deepinstinct LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Immersive Labs: Immersive Labs gives security professionals practical and gamified content to keep pace with the latest threats. Listeners can signup at immersivelabs.com/smashing to get instant access to more than 24 hours of free labs AND a new lab to try out each week.Support Smashing SecurityLinks:Cheating in online games — Wikipedia.UK Ad Campaign Seeks to Deter Cybercrime — Brian Krebs.DDoS attacks are illegal — National Crime Agency (NCA).Google doesn’t seem to believe booters are illegal — Light Blue Touchpaper.Google ad policies.NHS Test and Trace — Yes, the legitimate website.Phishing danger is just a hyphen away — The AntiSocial Engineer.Apparently Coronavirus-tracing scammers won't sound professional... (Yeah, right!) — Graham Cluley.This is how you can verify you are actually being contacted by the government’s Test and Trace service — Full Fact.Glastonbury calls for 5G inquiry — Glastonbury Town Council.Trading Standards squad targets anti-5G USB stick — BBC News.Reverse Engineering a 5g 'Bioshield' — Pen Test Partners.Glastonbury 5G report 'hijacked by conspiracy theorists' — BBC News.Tweet by the BBC's Rory Cellan-Jones.5GBioShield.Swopper chair — Stuhl.The Swopper by Aeris — YouTube.The Knowledge: How to Rebuild our World from Scratch — Book by Lewis Dartnell.Men hired for sexual fantasy break into wrong house — BBC News.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 27, 2020
On this special splinter episode of the podcast, we're joined by actor and comedian Clare Blackwood in the hope of convincing her that cybersecurity is no laughing matter. Hear what happens in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Carole's cousin (!) Clare Blackwood. Visit https://www.smashingsecurity.com/180 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Clare Blackwood.Sponsored By:Immersive Labs: Immersive Labs gives security professionals practical and gamified content to keep pace with the latest threats. Listeners can signup at immersivelabs.com/smashing to get instant access to more than 24 hours of free labs AND a new lab to try out each week.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:All ages dance on TikTok during coronavirus quarantine — Los Angeles Times.Fugitive John McAfee’s location revealed by photo meta-data screw-up — Naked Security.Have I Been Pwned: Check if your email has been compromised in a data breach.Clare Blackwood's TikTok dance.The Miracle Sudoku — YouTube.Cracking The Cryptic YouTube channel.Puzzled man solving 'miracle' sudoku becomes YouTube sensation — The Guardian.Dumb-Dumbs and Dice.Into the Night — Netflix.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 20, 2020
Apps that belch out sensitive military information, what could the world learn from South Korea's digital response to the Coronavirus pandemic, and who has been deepfaking Bill Clinton, Jay-Z, and Donald Trump... and why? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Brian Klaas of the "Power Corrupts" podcast. Plus we have a bonus feature interview with Rachael Stockton from Logmein, the folks behind LastPass, all about their report into the psychology of passwords. Visit https://www.smashingsecurity.com/179 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Brian Klaas and Rachael Stockton.Sponsored By:LastPass: LastPass's "Psychology of Passwords" report surveyed over 3,000 people around the world to highlight the current state of online security behaviors – and the results are alarming. Download it now at smashingsecurity.com/passwordreportImmersive Labs: Immersive Labs gives security professionals practical and gamified content to keep pace with the latest threats. Listeners can signup at immersivelabs.com/smashing to get instant access to more than 24 hours of free labs AND a new lab to try out each week.Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice. Listeners can get a 40% discount on the Boxcryptor Personal License (private use) and Boxcryptor Business (perfect for self-employed) by visiting smashingsecurity.com/boxcryptor Support Smashing SecurityLinks:Military And Intelligence Personnel Can Be Tracked With The Untappd Beer App — Bellingcat.What South Korea's Nightclub Outbreak Can Teach Other Countries — Time.When audio deepfakes put words in Jay-Z’s mouth, did he have a legal case? — Ars Technica.Jay-Z’s Deepfake Hamlet Recital — To Sue, Or Not To Sue — Forbes.Vocal Synthesis — YouTube channel.Doordash and Pizza Arbitrage — Ranjan Roy.Iron Chef Japan episodes — YouTube.Rabbit Hole podcast.The Psychology of Passwords — LastPass.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 13, 2020
Graham shares stories of email storms, Carole describes the steps being taken by firms as they try to coax employees back to the office, and guest Lisa Forte details a hack that has impacted Lady Gaga and other celebrities. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Lisa Forte. Visit https://www.smashingsecurity.com/178 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Lisa Forte.Sponsored By:Immersive Labs: Immersive Labs gives security professionals practical and gamified content to keep pace with the latest threats. Listeners can signup at immersivelabs.com/smashing to get instant access to more than 24 hours of free labs AND a new lab to try out each week.Oracle: Oracle has partnered with KPMG to produce a new cloud threat report. It reveals a crisis of confidence caused by a patchwork approach to data security, misconfigured services and confusion around cloud security models. This will only be fixed by organizations making security part of the culture of their business. Read the full report at smashingsecurity.com/oraclereportLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Me Too! — Microsoft tells the story of the Bedlam DL3 email storm.Microsoft employees swept up in GitHub reply-all email apocalypse — Business Insider.Microsoft now blocks reply-all email storms to end our inbox nightmares — The Verge.Reply All Storm Protection in Exchange Online — Microsoft Tech Community.Entertainment Law Firm Hacked in Major Data Breach, Ransomware Attack — Variety.Coronavirus: Commuters told to 'prepare to queue' in new guidance — BBC News.Employers Rush to Adopt Virus Screening. The Tools May Not Help Much — The New York Times.Robot dog enforces social distancing in city park — BBC News.Onkalo spent nuclear fuel repository — Wikipedia.Into Eternity — Wikipedia.Finland buries its nuclear past — BBC News.The plan to protect humans from radioactive waste with color-changing cats — Business Insider.How colour-changing cats might warn future humans of radioactive waste — The Guardian.The Summit trailer — YouTube.No Way Down: Life and Death on K2 — Amazon.com.Jim Lahey's No-Knead Bread Recipe — Leite's Culinaria.No Knead Bread Recipe — YouTube.No-Knead Bread Recipe — New York Times.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 6, 2020
What can X Æ A-12 Musk teach us about passwords? How did our guest finally hunt down the man behind one of history's biggest virus outbreaks in Manila? And what on earth is a hacker doing breaching Roblox security? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White. Visit https://www.smashingsecurity.com/177 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:DomainTools: Join our friends at DomainTools for a webinar as they walk you through the process of identifying a nefarious domain, mapping connected infrastructure, and reverse-engineering a ransomware attack which used a Coronavirus disguise. Learn more about how DomainTools helps security analysts turn threat data into threat intelligence and watch the webinar at domaintools.com/smashingOracle: Build, test, and deploy applications on Oracle Cloud - for free. Sign up at smashingsecurity.com/oracle and you'll soon be building, testing and deploying cloud applications securely with Oracle.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Vote for Smashing Security in the EU Security Blogger Awards!Graham Cluley on Earworm Island — Earworm Island podcast.Carole Theriault on Earworm Island — Earworm Island podcast.Elon Musk tweets a photo of his newborn child — Twitter.World Password Day — Days of the year.Grimes explains the baby's name — Twitter.Don’t Make These 5 Password FAILS! (But Do Notch These 2 Password Wins) — ID Agent.Love Bug Virus Creator Comes Clean — Geoff White.Memories of the Melissa virus — Naked Security.Roblox — Wikipedia.What is Roblox? — Digital Trends.Hacker Bribed 'Roblox' Insider to Access User Data — Motherboard.I'm Officially RICHER Than ROBLOX!! (WORLD RECORD BROKEN) — Linkmon99 on YouTube.WM97/Michael-B virus analysis — Sophos.Bookcase Credibility — @BCredibility on Twitter.Five Minutes With: Brian Sewell — YouTube. So you can see how good Graham's impression is.Syncplay.Netflix Party.Whole Chicken in a Can — Ashens on YouTube.Poundland Food Special - All Day Breakfast — Ashens on YouTube.MRE & Ration Reviews — YouTube. A man experiencing and reviewing military rations from 1863-current day.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 29, 2020
Journalists spying on their rivals, the NHS rejects Apple and Google's approach to Coronavirus-tracing, and universities are hit by an old-fashioned sexy lady attack. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Rik Ferguson. Visit https://www.smashingsecurity.com/176 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Rik Ferguson.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Vote for Smashing Security in the EU Security Blogger Awards!Financial Times reporter accessed private calls at Independent and Evening Standard — The Independent.FT suspends journalist accused of listening to rival outlets' Zoom calls — The Guardian.Sky News admits it hacked Canoe Man’s email — Naked Security.Is it ever acceptable for a journalist to hack into somebody else’s email? — Naked Security.NHS rejects Apple-Google coronavirus app plan — BBC News.Threat Actors Repurpose Hupigon in Adult Dating Attacks Targeting US Universities — Proofpoint.Warwick University kept data hack secret from students and staff — Birmingham Live.JustWatch - The Streaming Guide.Just Watch — Apple App Store.Just Watch — Google Play.Fire for Kids Unlimited — Amazon UK.Kindle Limited for Kids — Amazon.com.J! Archive.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 22, 2020
Will deepfake disguises hit a video conference near you, can Coronavirus-tracing apps be trusted, and should Facebook shut down anti-quarantine events? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/175 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice. Listeners can get a 40% discount on the Boxcryptor Personal License (private use) and Boxcryptor Business (perfect for self-employed) by visiting smashingsecurity.com/boxcryptor Support Smashing SecurityLinks:Did you know you could leave us a voicemail? Feel free to be as rude/weird/complimentary as you like... Iain Thomson in fancy dress on Zoom. — Twitter.Smashing Security 134: Sextortion, silicone face masks, and a DDoS doofus.Avatarify: Avatars for Zoom and Skype — GitHub."Elon Musk joined our Zoom call" — YouTube.Avatarify demo — YouTube.This Open-Source Program Deepfakes You During Zoom Meetings, in Real Time — Vice.Trailer for Zardoz (1974) — YouTube.Coronavirus: Governors ask Trump to call off lockdown protests — BBC News.Facebook sort-of blocks anti-quarantine events – how many folks are actually behind these 'massive' protests online? — The Register.COVID-19 apps — Wikipedia.Would You Give Up Health or Location Data to Return to Work? — The New York Times.European scientists and researchers raise privacy concerns over coronavirus contact tracing apps — VentureBeat.European experts ready smartphone technology to help stop coronavirus — Reuters.2 billion phones cannot use Google and Apple contact-tracing tech — Ars Technica.Contact Tracing in the Real World — Light Blue Touchpaper.Tracking the Global Response to COVID-19 — Privacy International.Apple and Google Respond to Covid-19 Contact Tracing Concerns — Wired.Sketchplanations - A weekly explanation in a sketch.Make These Projects to Fight COVID-19 Right Now — Make.3D Print This Simple Tool Now, To Help Local Sewists Make More Masks for Covid-19 — Make.Fix The Mask.Turn a T-shirt into a face mask — Ronit Bose Roy on Twitter.Educational Documentaries on Netflix — YouTube.Remote Tourism.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 15, 2020
World-chess-champion-turned-activist Garry Kasparov joins us as we discuss celebrity lookalikes, smartphone fleeceware, the impact Coronavirus is having on security, and how a popular new video game is being used for political ends. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Garry Kasparov. Yes, the Garry Kasparov. Graham was pretty excited too. Visit https://www.smashingsecurity.com/174 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Garry Kasparov.Sponsored By:Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice. Listeners can get a 40% discount on the Boxcryptor Personal License (private use) and Boxcryptor Business (perfect for self-employed) by visiting smashingsecurity.com/boxcryptor Support Smashing SecurityLinks:Don’t let fleeceware sneak into your iPhone — Sophos.Fleeceware apps persist on the Play Store — Sophos.Fleeceware apps discovered on the iOS App Store — ZDNet.How to see or cancel subscriptions on your iPhone, iPad or iPod touch — Apple Support.How to cancel, pause, or change a subscription on Google Play — Google Play Help.Global Move to Telecommute Work Increases Security Risks — Voice of America.Cybercriminals impersonate World Health Organization to distribute fake coronavirus e-book — Malwarebytes.Animal Crossing.The Vegan Guide to 'Animal Crossing: New Horizons' — PETA Kids.Chinese gamers decorate Animal Crossing with propaganda and Covid-19 references — Abacus.Nintendo game pulled from Chinese platforms after Hong Kong protest — Reuters.Animal Crossing removed from sale in China amid Hong Kong protests — BBC News.Animal Crossing game removed from sale in China over Hong Kong democracy messages — The Guardian.Retirement day fighter jet ride ends in chaos after OAP pulls ejector seat lever — Daily Star.Extraordinary Times: A COVID-19 Visual Journal — Maria Photinakis.French air investigation report.Coronavirus: 20 suspected phone mast attacks over Easter — BBC News.Coronavirus: Scientists brand 5G claims 'complete rubbish' — BBC News.The Weirdly Enduring Appeal of Weird Al Yankovic — The New York Times.‎The Daily: The Sunday Read: Weird Al Yankovic’s Weirdly Enduring Appeal — Apple Podcasts.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 8, 2020
We take a look at the stinky backside of surveillance, gas about the latest video-conferencing threats, and jump into the murky world of 5G conspiracy theories. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology broadcaster David McClelland and featuring an interview with LastPass's Barry McMahon. Visit https://www.smashingsecurity.com/173 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Barry McMahon and David McClelland.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Engineers unleash car-seat identifier that reads your rear end — Phys.org.Identifying personal microbiomes using metagenomic codes — PNAS.A mountable toilet system for personalized health monitoring via the analysis of excreta — Nature.'Magic toilet' could monitor users' health, say researchers — The Guardian.Toilet hackers could snoop on your poop, steal data of a “personal nature” — Graham Cluley.Zoomed In: A Look into a Coinminer Bundled with Zoom Installer — Trend Micro.PSA: Fake Zoom installers being used to distribute malware — Bleeping Computer.Was a 5G Tower Torn Down in China To Stop COVID-19? — Snopes.Coronavirus 5G Conspiracy Theory: UK Cell Towers Burned Over Claims It Causes COVID-19 — International Business Times.Coronavirus 5G conspiracy theory spreads as cellphone towers attacked — USA Today.5G is not accelerating the spread of the new coronavirus — Full Fact.Influencers among 'key distributors' of coronavirus misinformation — The Guardian.How the 5G coronavirus conspiracy theory tore through the internet — Wired.Call for social media platforms to act on 5G mast conspiracy theory — The Guardian.Totally Reliable Delivery Service - The Game About Terrible Delivery Drivers.Totally Reliable Delivery Service - Launch Trailer — YouTube.LET'S GO LIVE with Maddie & Greg — YouTube.Power Corrupts Podcast.The godfather of fake news — BBC News.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 1, 2020
Carole details how companies are spying on their stay-at-home workers, Mikko Hyppönen discusses the trustworthiness of video chat apps, and Graham gets embarrassed when he admits he's bought a Facebook Portal for his in-laws. All this and much much more is discussed in the latest edition of the award-winning "Smashing Security" podcast with Graham Cluley and Carole Theriault. Visit https://www.smashingsecurity.com/172 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Mikko Hyppönen.Sponsored By:DomainTools: DomainTools helps security analysts turn threat data into threat intelligence. Its solutions give organizations the ability to use and create a forensic map of criminal activity, assess threats and prevent future attacks. Learn more about their products at domaintools.com, or visit domaintools.com/smashing to enter their Capture The Flag competition and be in with a chance to win a $100 gift card.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Herrasmieshakkerit — Mikko's security podcast (in Finnish) with Tomi Tuominen.Video trailer for Herrasmieshakkerit — YouTube.Has Houseparty really been hacked? $1 million reward offered to unearth who is behind widespread claims — Graham Cluley.Houseparty declares that all accounts are safe — Twitter.Houseparty announces $1,000,000 bounty — Twitter.Zoom Meetings Do Not Support End-to-End Encryption — The Intercept.The most popular smartphones in 2019 — DeviceAtlas.The Zoom IPO (with Santi Subotovsky) — Acquired podcast.Cyber Volunteers – Protecting and Responding for our healthcare services! — CV19.Bosses Panic-Buy Spy Software to Keep Tabs on Remote Workers — Bloomberg.Your Bosses Are Trying To Spy On You Now More Than Ever — Futurism.Companies are using webcams to monitor employees working from home — Business Insider.Something Rhymes with Purple — Acast.Susie Dent on Twitter.Virtual choir from Finland: "Song of the Fearless" — YouTube.Someone's built the entire Earth in Minecraft - to scale — Eurogamer.The Earth in Minecraft, 1:1 scale ...for the first time — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 26, 2020
Blackmailers are threatening to infect your family with Coronavirus, trolls are making Zoom an unsafe place for those of a sensitive disposition, and what is the mysterious Dr Negrin audio message spreading on WhatsApp? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White. Visit https://www.smashingsecurity.com/171 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:"Stay home and help flatten the curve!" — Tweet by Pornhub.‘Dirty little secret’ extortion email threatens to give your family coronavirus — Naked Security.Google Assistant calling the hairdresser for an appointment — YouTube.Geoff White tweets about the "Dr Negrin" audio message. — Twitter.Priest in Italy live streams mass, activates filters by mistake — Reddit.Beware of ‘ZoomBombing:’ screensharing filth to video calls — TechCrunch.‘Zoombombing’: When Video Conferences Go Wrong — The New York Times.How to prevent your Zoom meetings being Zoom-bombed (gate-crashed) by trolls — ZDNet.Students Are Targeting Zoom and Classroom With Bad Reviews To End Homework During Coronavirus Outbreak — Newsweek. MS-DOS Games you can play in your browser — The Internet Archive.Humbug by Graham Cluley — The Internet Archive.A New Map of Wonders: A Journey in Search of Modern Marvels — Amazon.com.Revolution [8 Bit Tribute to The Beatles] — YouTube.8 Bit Universe — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 19, 2020
It's a self-isolated Coronavirus special as we discuss with our quarantined special guest how COVID-19 is making itself felt in the world of cybersecurity, and we offer tips on how to better protect yourself if you're unexpectedly working from home. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Malicious Life's Ran Levi from his attic. Visit https://www.smashingsecurity.com/170 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Ran Levi.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.DomainTools: DomainTools helps security analysts turn threat data into threat intelligence. Its solutions give organizations the ability to use and create a forensic map of criminal activity, assess threats and prevent future attacks. Learn more about their products at domaintools.com, or visit domaintools.com/smashing to enter their Capture The Flag competition and be in with a chance to win a $100 gift card.Support Smashing SecurityLinks:CovidLock: Mobile Coronavirus Tracking App Coughs Up Ransomware — DomainTools.CovidLock Update: Deeper Analysis of Coronavirus Android Ransomware — DomainTools.Israel to use anti-terror tech to counter coronavirus 'invisible enemy' — Reuters.Coronavirus: Sophie Trudeau had event with Idris Elba, Lewis Hamilton — Business Insider.Porn Sets Asked to Stop Production to Help Slow the Spread of Coronavirus — VICE.People who work from home earn more than those who commute—here's why — CNBC.Twitter orders all employees worldwide to work from home — The Verge.NASA chief urges space agency employees work from home amid coronavirus outbreak — Space.JPMorgan tells employees around the world to work from home — CNBC.Pornhub handing out free premium subs to help Italy fight coronavirus — The Next Web.Tweet from ProtonVPN.PornHub Insights.Coronavirus insights — PornHub Insights.A global map of wind, weather, and ocean conditions.Cold podcast — Wondery.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 12, 2020
How one guy's exercise routine made him a burglary suspect, how multi-factor authentication can cause headaches as well as stop hacks, and how Virgin Media got itself in a pickle over its sloppy data security. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/169 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Leave Smashing Security a voicemail!Google tracked his bike ride past a burglarized home. That made him a suspect. — NBC News.Smashing Security episode 144: "Google helps the FBI, Twitter Jack’s hijack, and car data woes."Breaking Password Dependencies: Challenges in the Final Mile at Microsoft — YouTube.FYI: When Virgin Media said it leaked 'limited contact info', it meant p0rno filter requests, IP addresses, IMEIs as well as names, addresses and more — The Register.Data Breach Information FAQ — Virgin Media.Virgin Media Disclosure Statement — TurgenSec.Virgin Media breach 'linked customers to porn' — BBC News.Ultimate Chicken Horse — Clever Endeavour Games.Ultimate Chicken Horse - Trailer - Nintendo Switch — YouTube.Coronavirus prevention: 10 songs for hand washing — Los Angeles Times.New currency circulation in Australia — Reddit.Lisa Forte reports on loo roll stocks in the Abu Dhabi Waitrose — Twitter.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 5, 2020
Fraudsters steal millions from those hoping to jump on the Bitcoin bandwagon, Twitter verifies a fake US politician, and it's another face palm for facial recognition. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. Visit https://www.smashingsecurity.com/168 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.DomainTools: DomainTools turns threat data into threat intelligence, giving organizations the ability to use and create a forensic map of criminal activity, assess threats and prevent future attacks. Read a free report into how automation is changing IT security, and specifically the staffing of IT departments.Support Smashing SecurityLinks:Inside the Kiev fraud factory stealing senior citizens’ savings — Dagens Nyheter.Revealed: fake 'traders' allegedly prey on victims in global investment scam — The Guardian.Inside the Kiev Bitcoin fraud factory — YouTube.A high school student created a fake 2020 candidate. Twitter verified it — CNN.Verified account FAQs — Twitter.London's Dazzle Club uses makeup to protest police use of facial recognition technology — WKSU.CV Dazzle: Camouflage from Face Detection.Clearview AI's Facial Recognition Tech Is Being Used By The Justice Department, ICE, And The FBI — BuzzFeed.Amazon Dating: The Future of Dating — Not the real Amazon.Carole's ideal date — Amazon Dating.My Word! — BBC.My Word recording from early 1960s — YouTube.Solve podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
February 27, 2020
Scammers from Africa are preying on US businesses, a drug dealer makes a mistake when hiding his Bitcoin fortune, and the Coronavirus pandemic is causing scams to soar and raising questions about facial recognition. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security's Anna Brading. Visit https://www.smashingsecurity.com/167 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Anna Brading.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Business Email Compromise (BEC) and G Suite: How the Exaggerated Lion Cybercrime Group Cashes Out — Agari.A weed dealer’s $59M lesson: Don’t hide Bitcoin keys with a fishing rod — Ars Technica.Chance encounter with gardaí unmasked bitcoin millionaire drug dealer — Irish Times.Man who ‘threw away’ bitcoin haul now worth over $80m wants to dig up landfill site — The Independent.Novel Coronavirus Update — RSA Conference.The Coronavirus Is Swiftly Breaching Defenses Across The World — Peak Prosperity.Scores of Hongkongers hit by mask scam on Facebook, hundreds more could be fraud victims since coronavirus outbreak — South China Morning Post.How Big of a Scam Are 'Coronavirus Protection Kits?' — Vice.Wearing a mask won’t stop facial recognition anymore — Abacus News.Coronavirus phishing scam targets victims with false information — Business Insider.This Cat Does Not Exist.These Cats Do Not Exist.Intelligence — Sky.This Country — BBC Three.Farkle — Wikipedia.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
February 20, 2020
How to stop dick pics on Twitter, and a new way bad guys are extorting money from websites earning cash from Google ads. All this and much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault. Visit https://www.smashingsecurity.com/166 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.DomainTools: DomainTools turns threat data into threat intelligence, giving organizations the ability to use and create a forensic map of criminal activity, assess threats and prevent future attacks. Read a free report into how automation is changing IT security, and specifically the staffing of IT departments.Support Smashing SecurityLinks:Tweet from Kelsey Bressler.safeDM – Making the Internet Safer.@showYoDiq — Twitter.This Dick Pic Filter For Your Inbox Does Block Most Pictures Of Dicks, And Some Dick-Like Things — Buzzfeed.Smashing Security 034: The pen is mightier than the password — With special guest David McClelland.Pay Up, Or We’ll Make Google Ban Your Ads — Krebs on Security.The Personal History of David Copperfield (Trailer) — YouTube.The Personal History of David Copperfield — Wikipedia.Hunted — Endeavor Audio.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
February 13, 2020
Wi-Fi hopping malware, the return of Ashley Madison extortion scams, and should social media be doing anything about cheapfakes? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker. Visit https://www.smashingsecurity.com/165 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Jessica Barker.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Smashing Security #162: Robocalls, health hacks, and facial recognition fears — Carole talks about the activities of Clearview AI.‎The Daily: The End of Privacy as We Know It? — Apple Podcasts.Emotet Malware Advisory — US Department of Homeland Security.Emotet Wishes You a Merry Christmas from Greta Thunberg — Proofpoint.Coronavirus - hackers exploit fear of infection to spread malware — Graham Cluley.Emotet evolves with new Wi-Fi spreader — Binary Defense.Dear Ashley Madison user, I know everything about you. Pay up or else — Ars Technica.Here's what an Ashley Madison blackmail letter looks like — Graham Cluley.Nancy Pelosi rips up Trump's speech after divisive State of the Union address — The Guardian.Tweet by Dan Scavino Jr.Video of Pelosi brings renewed attention to 'cheapfakes' — AP News.Tool to Help Journalists Spot Doctored Images Is Unveiled by Jigsaw — The New York Times.Smashing Security #143: Hacking from outer space, Ukrainian cryptomining, and deepfaked Canadians.First survey of its kind for 50 years finds most Americans still think they have above average intelligence — Research Digest.Grumpy Website.The Courage to Be Disliked: The Japanese Phenomenon That Shows You How to Change Your Life and Achieve Real Happiness — Amazon.Sophie's World: A Novel About the History of Philosophy — Amazon.com.Fake Heiress – The woman who scammed New York — BBC Radio Four.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
February 6, 2020
A gallery is tricked into giving millions to a fraudster, software tells doctors to push opioids onto patients, and an artist finds a novel way to trick Google Maps into thinking there's a traffic jam. All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who ended up recording without a guest this week. Visit https://www.smashingsecurity.com/164 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Castbox, Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Fraudsters Posing as Art Dealer Got Gallery to Pay Millions — Bloomberg.‘Hampstead Heath, Harrow in the Distance’, John Constable, David Lucas, published 1855 — Tate.Electronic Health Records Vendor to Pay $145 Million to Resolve Criminal and Civil Investigations — Department of Justice.In secret deal with drugmaker, health-records tool pushed opioids — Los Angeles Times.Practice Management Software — Practice Fusion.Opioid epidemic in the United States — Wikipedia.Exclusive: OxyContin maker Purdue is 'Pharma Co X' in U.S. opioid kickback probe - sources — Reuters.Smashing Security 122: The big fat con at Office Depot.Google Maps hacks — Simon Weckert.Google Maps Hacks by Simon Weckert — YouTube.Telling Lies launch trailer — YouTube.‎Telling Lies — iOS App Store.Telling Lies — Steam.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 30, 2020
Should possessing malware be illegal in itself? How did a Russian cryptocurrency exchange millionaire lose his fortune? And what on earth are Amazon Ring doorbell cams up to now? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Lisa Forte. And don't miss our special featured interview with Adrian Sanabria, all about Thinkst Canary. Visit https://www.smashingsecurity.com/163 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Castbox, Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Adrian Sanabria and Lisa Forte.Sponsored By:Thinkst: Most companies discover they’ve been breached way too late. Thinkst Canary fixes this: just 3 minutes of setup; no ongoing overhead; nearly 0 false positives, and you can detect attackers long before they dig in. Go to canary.tools to find out why its Physical, VM and Cloud Based Canaries are deployed and loved on all 7 continents...LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Senate Bill 30 (PDF)Maryland: Make malware possession a crime! Yes, yes, researchers get a free pass — The Register.The City Of Baltimore Blew Off A $76,000 Ransomware Demand Only To Find Out A Bunch Of Its Data Had Never Been Backed Up — Techdirt.Smashing Security 151: Frankly, sometimes paying the ransom is a good idea.Maryland Computer Crimes Laws — FindLaw.Maryland Cookies TV advert — YouTube.Hunting the missing millions from collapsed cryptocurrency — BBC News.Inside the hellish workday of an Amazon warehouse employee — New York Post.Ring Doorbell App Packed with Third-Party Trackers — Electronic Frontier Foundation.Nicholas Parsons: 'Broadcasting legend' dies at 96 after short illness — BBC News.Just a Minute — Wikipedia.Nicholas Parsons interviewed by Richard Herring — YouTube.Her Story - A Video Game About a Woman Talking to the Police.Her Story trailer — YouTube.Her Story follow-up takes place on a stolen NSA hard drive — Polygon.Bezos learns the harsh lesson of texting a crown prince fond of crucifixions — Marina Hyde, writing in The Guardian.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 23, 2020
A hospital gets hacked because of an ex-employee's grudge, robocalls are on the rise, and we share a scary story about the future of facial recognition. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Michael Hucks. Visit https://www.smashingsecurity.com/162 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Castbox, Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Michael Hucks.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Domain Tools: DomainTools helps security analysts turn threat data into threat intelligence. Its solutions give organizations the ability to use and create a forensic map of criminal activity, assess threats and prevent future attacks. Learn more about their products at domaintools.com, or visit domaintools.com/smashing to enter their Capture The Flag competition and be in with a chance to win a $100 gift card.Support Smashing SecurityLinks:YOU Season 2 Trailer — YouTube.Hospital administrator sacked for using NHS computer to download over 10,000 records is spared jail — Daily Mail.Robocalls: Americans got 58.5 billion in 2019, up 22% from last year — USA Today.Microsoft and Google just can't agree on proposed ban on facial recognition — ZDNet.Clearview - Technology to help solve the hardest crimes.The Secretive Company That Might End Privacy as We Know It — New York Times.Clearview FAQ (PDF).Episode review: Columbo Double Shock — Graham got it wrong. It was Martin Landau, not Leonard Nimoy, who played the twins. And they weren't surgeons (but Nimoy did play an evil surgeon in a different Columbo episode that season)Eunoia: Words that Don't Translate.Dog wagging her tail every time she sees her owner — YouTube.She Said: Breaking the Sexual Harassment Story That Helped Ignite a Movement — Amazon.com.Harvey Weinstein Paid Off Sexual Harassment Accusers for Decades — New York Times.‘She Said’ Recounts How Two Times Reporters Broke the Harvey Weinstein Story — New York Times.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 16, 2020
The man who hacked the UK National Lottery didn't end up a winner, Japanese Love hotel booking tool suffers a data breach, and just what is 23andMe planning to do with your DNA? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Thom Langford. Visit https://www.smashingsecurity.com/161 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Thom Langford.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Cyber criminal jailed over National Lottery hack — National Crime Agency.Man who hacked National Lottery for just £5 is jailed for nine months — Hot for Security.Booking data stolen from Japanese short-time love hotel booking service HappyHotel — SiliconANGLE.23andMe Licenses Drug Compound to Spanish Drugmaker Almirall — Bloomberg.Big Data and the End of Painful, Invasive Medical Procedures | — Wired.How 23andMe Won Back the Right to Foretell Your Diseases — Wired.Privacy policy. — 23andMe.Turbo Boost Switcher for macOS.Embarrassed patients can now send photos of genitals to doc for STI checks — The Sun.Messiah trailer — YouTube.Messiah — Netflix.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 9, 2020
We discuss how Microsoft Word helped trap a multi-million dollar fraudster, how Amazon Ring may be recording more than you're comfortable with, and how teens are flocking to TikTok (and why that might be a problem). All this and much much more is covered in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/ to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Senior Manager Of Global Internet Company Pleads Guilty To Wire Fraud — Department of Justice.IT exec sets up fake biz, uses it to bill his bosses $6m for phantom gear, gets caught by Microsoft Word metadata — The Register.We Tested Ring’s Security. It’s Awful — Motherboard.Amazon Ring isn’t even good at pretending to care about your privacy and safety — Fight for the FutureAmazon’s Ring to let customers opt out of receiving police video requests — GeekWire.Letter to Amazon's Jeff Bezos from Senator Ron Wyden and others (PDF).House panel asks Apple, Google if app makers must reveal foreign ties — Engadget.U.S. Military Bans TikTok Over Ties to China — Wall Street Journal.The Growing Popularity of Chinese Social Media Outside China Poses New Risks in the West — PIIE.TikTok Privacy Policy.Statement on TikTok's content moderation and data security practices — TikTok.Revealed: how TikTok censors videos that do not please Beijing — The Guardian.Parents warned to check kids' phones for 15 popular apps used by paedos and bullies to target youngsters — The Sun.Dracula — BBC iPlayer.Dracula — Netflix.Obsessed With... - Dracula - Episode 1: The Rules of the Beast feat. Mark Gatiss and Steven Moffat — BBC Sounds.Dracula TV series — Wikipedia.The Witcher — Netflix.The Witcher Soundtrack - Toss A Coin To Your Witcher Lyrics — YouTube.Ricky Gervais 2020 Golden Globe Monologue — Reddit.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
December 19, 2019
A rapping bank worker is accused of stealing from the vault, the devices that can hide your car's true mileage, and why it may be a case of "No No No" rather than "Ho Ho Ho" when it comes to IoT toys this Christmas. And as Carole sups the mulled wine, Graham has problems with his internet connection... All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. Visit https://www.smashingsecurity.com/159 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:‘No Chance:’ John McAfee Halts Crypto Promo as US 2020 Elections Near — Coin Telegraph.FBI Arrests Former Bank Employee Charged With Stealing Cash From Bank Vault — US Department of Justice."Problem" video — Aceey4oez on Instagram.Man posted photos of himself with stacks of cash after stealing from bank: charges — Sydney Morning Herald.The 1980 Cadillac Seville.Naughty CANbus odometer "interface". (Fakes mileage.) — Bigclivedotcom on YouTube.Children’s data and privacy online Growing up in a digital age (PDF) — London School of Economics.Amazon Echo Dot Kids: Privacy violations puts kids at risk, lawsuit alleges — CBS News.Parents should be wary of all connected toys, expert says — IT Pro.Safety alert: see how easy it is for almost anyone to hack your child’s connected toys — Which?Kids’ karaoke machines and smart toys from Mattel and Vtech among those found to have security flaws — Which?FTC fines Google $170 million for violating children's privacy on YouTube — CBS News.The movies that made us — Netflix.Die Hard — Wikipedia.Strong Songs podcast.Truth Be Told Official Trailer — YouTube.Truth Be Told doesn’t know how to make a murderer — The Verge.Truth Be Told — Apple TV+Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
December 12, 2019
We're joined by special guest Jamie Bartlett, of the chart-topping "The Missing Cryptoqueen" podcast, in this bumper episode where we discuss his investigation into the OneCoin cryptocurrency scam, the Russian cybercriminals behind Evil Corp, and the mysterious leaks about the NHS that have turned oh-so-political... All this and much much more can be found in the latest edition of the "Smashing Security" podcast, hosted by computer security veterans Graham Cluley and Carole Theriault. Visit https://www.smashingsecurity.com/158 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Jamie Bartlett.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Russian hacking group "Evil Corp" accused of targeting American businesses — CBS News, YouTube.Evil Corp donuts — YouTube.International law enforcement operation exposes the world’s most harmful cyber crime group — National Crime Agency.Treasury Sanctions Evil Corp, the Russia-Based Cybercriminal Group Behind Dridex Malware — U.S. Department of the Treasury.UK Government Releases Photos of Russian Hackers, Whose Lives Look Awesome — Motherboard.Hackers with high-placed daddies ‘Evil Corp’ member designated by U.S. Treasury is son of former Russian mayor — Meduza.The Missing Cryptoqueen — BBC Sounds.Jeremy Corbyn reveals dossier 'proving NHS up for sale' — The Guardian.Reddit links UK-US trade talk leak to Russian influence campaign — TechCrunch.Corbyn v Johnson: BBC election debate round-up — YouTube.Stammer Time! — Cassetteboy on Twitter.The Inside Story of Labour's 'NHS For Sale' Leak — Motherboard.More proof NHS is up for sale as Amazon exploits NHS for free — TruePublica.Tweet by Rik Ferguson about his fragrant armpits — Twitter.nuud.Accused of Killing a Gambino Mob Boss, He’s Presenting a Novel Defense — The New York Times.Graham and Carole appear on the BeerConOne Stream — Twitch. Graham & Carole show up at about 1 hour 48 minutes into the show.The Beer Farmers raise funds for the Electronic Frontier Foundation and Mental Health Hackersy The Beer Farmers : BeerConOne. — GoFundMe.The Radio Adventures Of Dr. Floyd.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
December 5, 2019
What is Kaspersky's ugly ring for? Is there something suspicious about how NordVPN lets you stream Disney+? And why did a hacker impersonate a music producer? Plus we have a bonus feature interview with Rachael Stockton from Logmein, the folks behind LastPass, all about behavioral biometrics! All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/157 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Maria Varmazis and Rachael Stockton.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:"Eau de Eugene Kaspersky" — Smashing Security, episode 12.Kaspersky Labs - Packin' The K — YouTube.Thousands of taxpayers tell HMRC to delete voiceprint data it stored without consent — Graham Cluley.Hackers Have Stolen Almost Six Million US Government Fingerprints — Tripwire.Fingerprints are not the same as passwords — Graham Cluley.Face/Off trailer — YouTube.Picture of the (rather ugly) Kaspersky ring — Twitter.Kasperky's synthetic fingerprint ring — YouTube.This Ring Uses a Fake Fingerprint to Protect Your Biometric Data — PC Magazine.How is NordVPN unblocking Disney+? It might be through YOUR own computer. Even if you’ve never used Disney+ or NordVPN. — Derek Johnson.The Rise of “Bulletproof” Residential Networks — Krebs on Security.SmartPlay by NordVPN: What is it and how does it work? — NordVPN.Resident Evil: Understanding Residential IP Proxy as a Dark Service — XiangHang Mi.Alleged Music Hacker Indicted for Impersonating a Producer to Steal Unreleased Music — Hollywood Reporter.Hacker stole unreleased music and then tried to frame someone else — ZDNet.Manhattan U.S. Attorney Announces Charges Against Austin Man For Computer Hacking And Fraud Scheme To Steal Unreleased Music From Music Industry Professionals — Department of Justice.Why the f**k was I breached?President Nixon Never Actually Gave This Apollo 11 Disaster Speech. MIT Brought It To Life To Illustrate Power Of Deepfakes — WBUR News.Which Classic Toy Came First? — Mental Floss.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 27, 2019
In this clip from a special bonus episode produced for our Patreon supporters, Graham Cluley and Carole Theriault discuss the 2014 hack of Sony Pictures - reportedly carried out by North Korea for the very oddest of reasons... Visit https://www.smashingsecurity.com/156 to check out this episode’s show notes and episode links, and become one of our "bonus content" Patreon supporters to hear the full episode in all its glory, get early access to future episodes, occasional bonus content, and even receive stickers! Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening and Happy Thanksgiving! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Support Smashing SecurityLinks:Hackers leak Hollywood salaries, embarrassing emails - PBS Newshour — YouTube.Did North Korea hack Sony? It seems hard to believe — Graham Cluley.Poor passwords at Sony, WikiLeaks shows with archive of hacked documents — Graham Cluley.The Interview Trailer (2014) — YouTube.U.S. Said to Find North Korea Ordered Cyberattack on Sony — The New York Times.Sony hackers failed to hide their North Korean IP addresses, says FBI — Hot for Security.NSA allegedly hacked North Korea's networks before Sony attacks — Graham Cluley.
November 21, 2019
A bank has some of the worst password advice ever, travellers are told to be wary when USB charging their smartphones and laptops, and a gamer has his YouTube account hacked. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Geoff White. Visit https://www.smashingsecurity.com/155 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Giorgio Bonfiglio tweets about Fineco's bizarre attitude to passwords — Twitter.This Bank Had the Worst Password Policy We've Ever Seen — Motherboard.NIST password guidelines.Officials warn about the dangers of using public USB charging stations — ZDNet.MarcoStyle on Twitter.A YouTuber With 350,000 Subscribers Was Hacked, YouTube Verified His Hacker — Forbes.Massive wave of account hijacks hits YouTube creators — ZDNet.Popular gaming channel MarcoStyle has been hacked for days, running scams, but YouTube isn't responding — Reclaim the net.How my Youtube Channel got hacked for 2 weeks — MarcoStyle on YouTube.The Crown — Netflix.Aberfan disaster — Wikipedia.Aberfan - 50 years on — WalesOnline.Cliff Michelmore eyewitness report from Aberfan — YouTube.Dolly Parton's America — WNYC Studios.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 14, 2019
The UK's Labour Party kicks off its election campaign with claims that it has suffered a sophisticated cyber-attack, Apple's credit card is accused of being sexist, and what is Google up to with Project Nightingale? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by John Hawes. Visit https://www.smashingsecurity.com/154 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: John Hawes.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:That "sophisticated" Labour cyber-attack - don't panic — Graham Cluley.General election 2019: Labour Party hit by second cyber-attack — BBC News.Election 2019: Security flaw leaves donors’ details online — The Times.Apple's 'sexist' credit card investigated by US regulator — BBC News.Apple's credit card caper probed over sexism claims – after women screwed over on limits — The Register.Google has access to detailed health records on tens of millions of Americans — Ars Technica.Google’s ‘Project Nightingale’ Gathers Personal Health Data on Millions of Americans — WSJ.Google buys Fitbit for $2.1 billion — Ars Technica.Smart condom ring i.Con is like a Fitbit for your man bits — CNET.The Missing Cryptoqueen — BBC Sounds.Undone — Amazon Prime.Speed Monopoly - How to Play in under 30 minutes! — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 7, 2019
The cybercrime lovebirds who hijacked Washington DC's CCTV cameras in the run-up to Donald Trump's inauguration, the truffle-snuffling bankers at the centre of an insider-trading scandal, and the hackers that Uber paid hush money to hide a security breach. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Lisa Forte. Visit https://www.smashingsecurity.com/153 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Lisa Forte.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Ransomware attack impacted 70% of Washington DC police surveillance cameras — Graham Cluley.The Hapless Shakedown Crew That Hacked Trump’s Inauguration — Wall Street Journal.Eveline Cismaru's Instagram account.London Investment Bankers Charged in Insider-Trading Ring — Bloomberg.Trade-Secrets Case Linked to Google Seen as Warning to Silicon Valley — Wall Street Journal.Uber concealed massive hack that exposed data of 57m users and drivers — The Guardian.Uber's statement about its 2016 "Data Security Incident"Hackers who extorted Uber and LinkedIn plead guilty — ZDNet.Maersk: Springing back from a catastrophic cyber-attack — I-CIO.The Master Game — Wikipedia.BBC's The Master Game — The Kenilworthian.Gogglebox — Channel 4.Ndemic Creations, makers of Plague Inc.Plague Inc. trailer — YouTube.‎Plague Inc. — iOS App Store.Plague Inc. — Google Play.The great contemporary art bubble. BBC documentary - YouTube — YouTube.BBC art documentaries playlist — YouTube.Painters and artists documentaries — YouTube.Art documentaries playlist — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
October 31, 2019
What's the problem with IoT-enabled pet feeders? Can hacking ever be illustrated without a hoodie? And just how are landlords using smart home technology to snoop upon their residents? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist and broadcaster David McClelland. Visit https://www.smashingsecurity.com/152 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David McClelland.Sponsored By:Immersive Labs: Immersive Labs provides the world's first fully interactive, on-demand, and gamified cyber skills platform. Try it for free at immersivelabs.com/lite/ and drive down your organisation’s cyber risk while reducing training costs.Code42: Code42 provides data loss protection for when employees quit. 60% of employees who quit their jobs admit to taking data. Your organization's data is more portable than ever and you have employees leaving everyday. Most organizations rely on prevention but there are simply too many ways for data to leave. To learn more about how to protect your company’s data from insider threats visit www.code42.com/smashingLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Security researcher gets access to all Xiaomi pet feeders around the world — ZDNet.Xiaomi crowdfunds the Furrytail Pet Smart Feeder with app control for 199 yuan ($28) — Gizmochina.How to say Xiaomi — BBC News.Xiaomi Furrytail Boss Cat Bed — YouTube.Remember that competition for non-hoodie hacker pics? Here's their best entries — The Register.Cybersecurity visuals challenge finalist catalog (PDF)SmartRent - Smart Apartment Solutions.Smart home tech can help evict renters, surveillance company tells landlords — CNet.SmartRent funding heralds new wave in 'smart home' market — Reuters.SmartRent's Privacy Policy.Sci-fi interfaces.Did Stanley Kubrick invent the iPad? — BFI.Factfulness: Ten Reasons We're Wrong About The World - And Why Things Are Better Than You Think by Hans Rosling — Amazon.The Joy of Stats, Hans Rosling's 200 countries, 200 years, 4 minutes — BBC Four.Joe Rogan Experience #1368 - Edward Snowden — YouTube.Joe Rogan Edward Snowden Podcast Interview Transcript: Rogan Spends Almost 3 Hours Interviewing Snowden.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
October 23, 2019
Remember how the City of Baltimore was badly hit by ransomware earlier this year? Turns out that wasn't the end of their problems. Also, Carole takes a look at how smart speakers can be hacked to trick you into giving criminals your passwords or even credit card details. And we discuss the findings of the LastPass global password security report. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, with a featured interview with Rachael Stockton from Logmein. Visit https://www.smashingsecurity.com/151 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Rachael Stockton.Sponsored By:Code42: Code42 provides data loss protection for when employees quit. 60% of employees who quit their jobs admit to taking data. Your organization's data is more portable than ever and you have employees leaving everyday. Most organizations rely on prevention but there are simply too many ways for data to leave. To learn more about how to protect your company’s data from insider threats visit www.code42.com/smashingImmersive Labs: Immersive Labs provides the world's first fully interactive, on-demand, and gamified cyber skills platform. Try it for free at immersivelabs.com/lite/ and drive down your organisation’s cyber risk while reducing training costs.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Support Smashing Security on Patreon — Now also includes free stickers!RobbinHood ransomware attack brings down parts of City of Baltimore's computer network — Tripwire.Some Baltimore City Services Still Shut Down Due To Ransomware Attack — YouTube.Baltimore government could have lost its website last week. And not because of hackers — Baltimore Brew.Baltimore transfers $6 million to pay for ransomware attack; city considers insurance against hacks — Baltimore Sun.Baltimore IT department uses ‘mind-boggling,' outdated data storage method, audit findsCouncilman “mind-boggled” by Baltimore City IT department ineptitude — Ars Technica.The City Of Baltimore Blew Off A $76,000 Ransomware Demand Only To Find Out A Bunch Of Its Data Had Never Been Backed Up — Techdirt."Backin Up" by The Gregory Brothers — YouTube.Smart Spies: Alexa and Google Home expose users to vishing and eavesdropping — Security Research Labs.Zoomquilt 2.Arkadia Zoomquilt.Historia Civilis — YouTube.2019 Global Password Security Report — LastPass.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
October 16, 2019
Footballers' wives go to war over Instagram leaks, it turns out fake news is fine on Facebook (just so long as it's in a political ad), and things take a horrific turn in Japan, as a stalker uses a scary technique to find out where his pop idol lives. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. Visit https://www.smashingsecurity.com/150 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:Code42: Code42 provides data loss protection for when employees quit. 60% of employees who quit their jobs admit to taking data. Your organization's data is more portable than ever and you have employees leaving everyday. Most organizations rely on prevention but there are simply too many ways for data to leave. To learn more about how to protect your company’s data from insider threats visit code42.com/smashingImmersive Labs: Immersive Labs provides the world's first fully interactive, on-demand, and gamified cyber skills platform. Try it for free at immersivelabs.com/lite/ and drive down your organisation’s cyber risk while reducing training costs.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Tweet by Coleen Rooney on Twitter.Tweet by Rebekah Vardy on Twitter.Prince Harry launches phone-hacking case against Sun and Mirror owners — The Guardian.Mark Zuckerberg: An Elizabeth Warren presidency would 'suck' for Facebook — CNN.In leaked audio, Mark Zuckerberg rallies Facebook against critics, competitors, and Elizabeth Warren — The Verge.Elizabeth Warren Facebook ad mocks Facebook's fact checking policies — Engadget.Graham getting thrashed by Garry Kasparov — @gcluley on TwitterStalker zoomed in on Japanese idol's eyes to find out where she lived — Graham Cluley.Obsessed fan finds Japanese idol's home by zooming in on her eyes — AsiaOne.Ni No Kuni: Wrath of the White Witch - Nintendo Switch Trailer — YouTube.Funny English Idioms - and why we say them! — YouTube.Vice — Amazon Prime.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
October 9, 2019
We take a trip to Staten Island, New York, to hear how a case of cyberstalking resulted in the arrest of 20 alleged mobsters, learn about the nude photo-loving insider threat at Yahoo, and discover how fraudsters might be boosting Match.com's profits. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Ran Levi of the "Malicious Life" podcast. Visit https://www.smashingsecurity.com/149 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Ran Levi.Sponsored By:Code42: Code42 provides data loss protection for when employees quit. 60% of employees who quit their jobs admit to taking data. Your organization's data is more portable than ever and you have employees leaving everyday. Most organizations rely on prevention but there are simply too many ways for data to leave. To learn more about how to protect your company’s data from insider threats visit code42.com/smashingImmersive Labs: Immersive Labs provides the world's first fully interactive, on-demand, and gamified cyber skills platform. Try it for free at immersivelabs.com/lite/ and drive down your organisation’s cyber risk while reducing training costs.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:
October 2, 2019
Drivers are distracted by a hacked billboard, we take a deeper look at how the deepfake problem has... uh... deepened, and Carole is less than happy about Amazon's announcement about new Alexa integrations. All this, an annoying goose, and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/148 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:Immersive Labs: Immersive Labs provides the world's first fully interactive, on-demand, and gamified cyber skills platform. Try it for free at immersivelabs.com/lite/ and drive down your organisation’s cyber risk while reducing training costs.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Wonderbra 'Hello Boys' advert voted most iconic of all time — Daily Mail.Hello boys! The greatest billboard ads of all time — The Sun.Outdoor advertisements and signs: a guide for advertisers (PDF) — UK Government.Pornographic video plays on I-75 billboard, police investigating — WXYZ Detroit.Porn plays on I-75 billboard, police searching for suspects caught on video — Detroit Free Press.Threesome Blowjob Scene on Giant Highway Billboard Could Have Caused an Accident, Police Say — Motherboard.Xev Bellringer's filmography — IMDB.Two people broke into shed, hacked into computers to put pornography on billboard — WXYZ Detroit.Motorists warned of “Zombies Ahead” on hacked road sign — Naked Security.Motorists warned of Dalek invasion by hacked road sign — Naked Security.Hacked Seattle road sign says ‘Impeach the Bastard’ — Q13Fox.Hackers have been f**king with downtown LA's road signs — Graham Cluley.The FaceForensics dataset — GitHub.This Deepfake of Mark Zuckerberg Tests Facebook’s Fake Video Policies — Motherboard.The Deepfake Detection Challenge.Smashing Security episode 063 — The first time Maria discussed deepfakes.Amazon bolsters Alexa privacy after user trust takes a hit — CNET.Alexa’s new Echo eyeglasses and ring show big tech’s privacy conundrum — Vox.Amazon's Rekognition software lets cops track faces: Here's what you need to know — CNET.Amazon may soon be able to track your phone’s location, activists warn — Business Insider.Your Google history.Untitled Goose Game.Find wi-fi hotspots with hotspot directories — BT Wi-Fi.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
September 25, 2019
How is private medical data leaking onto the streets of Milton Keynes, what is widening the cybersecurity skills gap, and how is Australia controversially tackling the problem of drivers using their mobile phones? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Joe Carrigan of the Information Security Institute at Johns Hopkins University. Visit
September 18, 2019
In the latest edition of the "Smashing Security" podcast, hosted by computer security veterans Graham Cluley and Carole Theriault, Carole has suffered an injury, we journey back in time to one of our earliest episodes to discuss the perils of passwords, and Rachael Stockton from LastPass drops by for a chat. Visit https://www.smashingsecurity.com/146 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Rachael Stockton and Vanja Švajcer.Sponsored By:Detectify: Detectify will run over 1500 security tests against your website, identifying real problems with a list of constantly updated vulnerabilities submitted by a global network of over 150 handpicked ethical hackers. Go hack yourself! Take a 14-day free trial at smashingsecurity.com/detectifyLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
September 11, 2019
Apple is furious with Google over iPhone hacking attacks against Uyghur Muslims in China, DNS-over-HTTPS is good for privacy but makes ISPs angry, and concern over digital assistants listening to our private moments continues to rise. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by web security journalist John Leyden. Visit https://www.smashingsecurity.com/145 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: John Leyden.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:A very deep dive into iOS Exploit chains found in the wild — Google Project Zero.Google finds 'indiscriminate iPhone attack lasting years' — BBC News.A message about iOS security — Apple.Mobile & Tablet Operating System Market Share in China — Statcounter.Apple Disputes Google’s Claims of a Devastating iPhone Hack — Motherboard.What’s next in making Encrypted DNS-over-HTTPS the Default — Mozilla.Firefox DNS-over-HTTPS rollout starts later this month — The Daily Swig.ISP trade association backtracks on Mozilla ‘internet villain’ nomination — The Daily Swig.Apple apologises for allowing workers to listen to Siri recordings — The Guardian.Apple contractors 'regularly hear confidential details' on Siri recordings — The Guardian.Almost a quarter of Britons now own one or more smart home devices — YouGov.The Bright Side of Humans Eavesdropping on Your Alexa Recordings — Gizmodo.Smart Speakers That Listen When They Shouldn't — Consumer Reports.BetterTouchTool for Mac.The SwigCast — A security podcast from The Daily Swig, featuring John Leyden.The Wii — Wikipedia.Just Dance 4: Rock Lobster - The B-52's — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
September 4, 2019
Should Google really be helping the FBI with a bank robbery? What's the story behind the Twitter CEO claiming there's a bomb in their offices? And how much does your car really know about you? And we mourn the loss of Doctor Who legend Terrance Dicks... All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White. Visit https://www.smashingsecurity.com/144 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Detectify: Detectify will run over 1500 security tests against your website, identifying real problems with a list of constantly updated vulnerabilities submitted by a global network of over 150 handpicked ethical hackers. Go hack yourself! Take a 14-day free trial at smashingsecurity.com/detectifySupport Smashing SecurityLinks:Feds ordered Google location dragnet to solve Wisconsin bank robbery — The Verge.Google reverse location search warrant.Manhattan DA Got Innocent People's Google Phone Data Through A 'Reverse Location' Search Warrant — Gothamist.Jorge Molina: Avondale police used Google data to wrongfully arrest me — AZCentral.About the Twitter CEO '@jack hack' — Graham Cluley.Trump says it 'shouldn't be too bad' if someone hacks his Twitter — Business Insider.Chuckle Brothers — Wikipedia.Wipe Data From Your Car Before Selling It — Consumer Reports.Connected Cars, Telematics and Connectivity-as-a-Service ​: What's the Future? — Dataconomy.It looks like tech-savvy drivers will have to lead connected car data purge — The Register.It’s too easy to steal a second‑hand connected car — We Live Security.Doctor Who writer Terrance Dicks dies, aged 84 — Radio Times.Terrance Dicks inspired me to write – and not to feel ashamed of my stammer — New Statesman.Terrance Dicks obituary — The Guardian.On The Outside It Looked Like An Old Fashioned Police Box... — A radio documentary about the Doctor Who novelisations, many of which were written by Terrance Dicks.Cybercrime Investigations podcast — Features some chap called Geoff White.Elisabeth Schwarzkopf's appearance on the BBC's Desert Island Discs, 1958 — Where she chooses seven of her own songs.Intelligence Squared podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 28, 2019
Was a cybercrime committed on the International Space Station? What on earth were Ukrainian scientists thinking when they plugged a nuclear power station into the internet? And someone has cloned Canadian clinical psychologist Jordan Peterson's voice... All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley. Visit https://www.smashingsecurity.com/143 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Mark Stockley.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:NASA Astronaut Anne McClain Accused by Spouse of Crime in Space — The New York Times.Space Station's Data Rate Increase Supports Future Exploration — NASA.Astronaut Anne McClain denies cybercrime allegations — @AstroAnnimal on Twitter.The Moon is Covered With 400,000 Pounds of Human Trash — Interesting Engineering.Lunar Roving Vehicle (LRV) — National Air and Space Museum. (Apparently it's top speed is a paltry 8 miles per hour, not the 17 miles per hour Graham claimed)Ukraine: Crypto Miners Arrested for Compromising Nuclear Plant Security — Coin Telegraph.A Site Faking Jordan Peterson's Voice Shuts Down After Peterson Decries Deepfakes — Motherboard.I Didn't Say That — Jordan Peterson.To fix the problem of deepfakes we must treat the cause, not the symptoms — The Guardian.Dr Jordan Peterson with Kermit the Frog — Twitter.Portsmouth Sinfonia — Wikipedia.Portsmouth Sinfonia perform "Also sprach Zarathustra" — YouTube.Portsmouth Sinfonia Plays the Popular Classics — YouTube.The Eden Project.Lebanese Mountain Bread Recipe — AllRecipes.comSourdough No-Knead Bread Recipe — The New York Times.Japanese Milk Bread Rolls recipe — King Arthur Flour.My Best Sourdough Recipe — The Perfect Loaf.Common Bread Baking Calculators — The Perfect Loaf.Beginner's Sourdough Bread — The Perfect Loaf.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 21, 2019
Darknet Diaries host Jack Rhysider joins us to discuss how cities in Texas are being hit by a wave of ransomware, how Mercedes Benz has installed a tracker in your car (but not for the reason you think), the security threats impacting smart cities, and a new feature coming to your Facebook app. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault. Visit https://www.smashingsecurity.com/142 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Jack Rhysider.Sponsored By:Immersive Labs: Immersive Labs provides the world's first fully interactive, on-demand, and gamified cyber skills platform. Try it for free at immersivelabs.com/lite/ and drive down your organisation’s cyber risk while reducing training costs.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Mercedes spies on drivers by secretly installing tracking devices in cars and passing information to bailiffs — The Sun.Three-unique-words 'map' used to rescue mother and child — BBC News.Rolling a Reliant Robin - Top Gear — YouTube.Ransomware Attack Affects Computers In 22 Towns In Texas — NPR.What Is A Smart City? — ComputerWorld.Access the latest smart city tenders — Bee Smart City.Hacking 20% of cars could freeze traffic in NYC, study finds — Smart Cities Dive.Lack of Critical Infrastructure Cybersecurity Investments in Smart Cities will Seed the Future IoT Vulnerabilities — ABI research.Facebook to stop stalking you off-site - but only if asked — BBC News.Now You Can See and Control the Data That Apps and Websites Share With Facebook — Facebook News Room.Off-Facebook Activity: Control your information — Facebook.Smashing Security #075: Quitting Facebook.Amazon.com: Logitech M705 Marathon Wireless Mouse — Amazon.40 brilliant idioms that simply can’t be translated literally — TED Blog.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 14, 2019
Say cheese to ransomware on your camera! A sponsored speech at Black Hat causes uproar, and should you trust that Lightning cable you're about to plug into your MacBook? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. Visit https://www.smashingsecurity.com/141 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Say Cheese: Ransomware-ing a DSLR Camera — Check Point Research.Ransomware on a DSLR Camera — YouTube.Security advisory for Canon digital cameras related to PTP (Picture Transfer Protocol) communication functions and firmware update functions — Canon.Black Hat Talk About ‘Time AI’ Causes Uproar, Is Deleted By Conference — Motherboard.Black Hat Attendees: Sponsored Session Was 'Snake Oil Crypto' — PC Magazine.Crown Sterling Presents: TIME AI — YouTube.Crown Sterling Issues Statement Regarding Recent Allegations Made at Black Hat 2019 — Business Wire.These Legit-Looking iPhone Lightning Cables Will Hijack Your Computer — Motherboard.O.MG cable.Remain Seated Please - The Hoot and Chief Story (Epcot Horizons) — YouTube.The true story of the unauthorized, daredevil documentation of the Horizons ride at Disney World — Dangerous Minds.Bathtubs over Broadway — Netflix.Bathtubs over Broadway - Official Trailer — YouTube.The Amelia Project podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 7, 2019
Is the PIN you use for your bank card secure? How did one woman get duped into giving a romance scammer $200,000? And Cloudflare and other online services take aim at a vile corner of the internet... All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/140 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:Most Common iPhone Passcodes — Daniel Amitay.We’ve fixed an issue that meant we weren’t storing some customers’ PINs correctly — Monzo.500,000 Monzo banking customers told to change their PINs — Graham Cluley.Terminating Service for 8Chan — Cloudflare.8chan struggling to stay online after its alleged use by El Paso shooting suspect — CNN.Online dating apps and websites the most common way to meet — 9to5Mac.Woman says a man she met on Tinder swindled her out of $200K: 'He didn't just dump you, he never existed' — ABC News.Cyber Actors Use Online Dating Sites To Conduct Confidence/Romance Fraud And Recruit Money Mules — Internet Crime Complaint Center (IC3).The Boys trailer — YouTube.The Boys — Amazon Prime.Camelcamelcamel.“Conviction,” Reviewed: A Bronx P.I. Pursues Justice, and Glory — The New Yorker.Conviction podcast — Gimlet.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
July 31, 2019
Capital One gets hacked, critical vulnerabilities are found in iMessage, and data anonymization may not be as good as we hope. But listen up, we also discuss the Legend of Zelda, a biography of tech giants, offer advice for escaping an angry moose, and are introduced to... Penelope? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole 'Penelope' Theriault, joined this week by technology broadcaster David McClelland. Visit https://www.smashingsecurity.com/139 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David McClelland.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:Woman arrested after Capital One hack spills personal info on 106 million — Tripwire.South Seattle woman arrested, charged in massive data breach of Capital One — The Seattle Times.Love Bug suspect speaks — BBC News speaks to the author of the Michael-B Word macro virus.United States vs Paige A Thompson (PDF)Ranji Sinha on Twitter: "Managed to get video of the raid in Seattle that lead to the arrest of Paige Thompson" — Twitter.Capital One Hit With First Class Action Over Security Breach — Bloomberg.Google reveals fistful of flaws in Apple's iMessage app — BBC News.Google researchers disclose vulnerabilities for 'interactionless' iOS attacks — ZDNet.Earn up to $200,000 as Apple *finally* launches a bug bounty — Graham Cluley.Look, No Hands! -- The Remote, Interaction-less Attack Surface of the iPhone — Black Hat USA 2019Your Data Were ‘Anonymized’? These Scientists Can Still Identify You — New York Times.Estimating the success of re-identifications in incomplete datasets using generative models — Nature.Hackers breach FSB contractor, expose Tor deanonymization project and more — ZDNet.The Legend of Zelda: Breath of the Wild — Wikipedia.Steve Jobs book by Walter Isaacson — Simon & SchusterThe Innovators by Walter Isaacson — Simon & SchusterWhat knowledge might save your life one day? — Reddit.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
July 24, 2019
Logic bombs in Excel spreadsheets, how should we protect our brain data from big companies, and how did bizarre messages about Drill rap end up on the Metropolitan Police's Twitter account and website? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by BJ Mendelson. Visit https://www.smashingsecurity.com/138 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: B J Mendelson.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Tinley Consulting's website.The meaning and origin of 'Come a cropper'.Siemens contractor pleads guilty to planting logic bomb in company spreadsheets — ZDNet.Brain data regulation — Practical Ethics, University of Oxford.Monkey uses brain to control prothetic arm — YouTube.Neuralink and the Brain's Magical Future — Wait But Why.Kernel is trying to hack the human brain - but neuroscience has a long way to go — The Verge.No, the Met Police wasn't hacked. But its Twitter account and website were hijacked — Graham Cluley.The war against rap: censoring drill may seem radical but it's not new — The Guardian.Katie Hopkins got her Twitter hacked - you had best continue ignoring her — Graham Cluley.Sorry for the Nazi spam from my Twitter account — Graham Cluley.Animated Knots by Grog.Expel your shallow human form and offer it up to new Garfield! — /r/imsorryjon on Reddit.Garfield minus Garfield.French inventor to attempt to cross Channel on jet-powered flyboard — The Guardian.Spider-Man vs Green Goblin — YouTube.'Like a damp towel on a line': the day Boris Johnson got stuck on a zip wire — The Guardian.B.J. Mendelson on Patreon.Smashing Security on Patron.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
July 17, 2019
Erection your honour! Lawyers find themselves behind bars after they make porn movies in an attempt to scam internet users, boffins in Israel detail a way to steal data from an air-gapped computer, and Instagram coughs up $30,000 after a researcher finds a simple way to hack into anybody's account. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/137 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:CTRL-ALT-LED: Leaking Data from Air-Gapped Computers Via Keyboard LEDs — IEEE.Academics steal data from air-gapped systems via a keyboard's LEDs — ZDNet.How I Could Have Hacked Any Instagram Account — The Zero Hack.How any Instagram account could be hacked in less than 10 minutes — Hot for Security.Takeru Kobayashi - hotdog-eating world record holder — Wikipedia.Smashing Security 092: Hacky sack hack hack.Porn pirating lawyer jailed for five years — BBC News.Stiff penalty: Prenda Law copyright troll gets 14 years of hard time for blue view 'n sue scam — The Register.Prenda Law boss John Steele to miss 2020 Olympics... unless they show it in prison — The Register.InspiroBot.What football will look like in the future — (Maria says don't try to read it on your smartphone)The Life Of A Rock.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
July 10, 2019
Mac users of the Zoom video conferencing app are warned their webcams could be hijacked, security firms warn of how scammers are deepfaking audio to steal from businesses, and our guest owns up to the role he played in an Iranian cyberattack against US organisations. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Charl van der Walt. Visit https://www.smashingsecurity.com/136 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Charl van der Walt.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website!Zoom Mac flaw allows webcams to be hijacked - because they wanted to save you a click — Graham Cluley.USCYBERCOM Malware Alert on Twitter.CISA Statement on Iranian Cybersecurity Threats — Department of Homeland Security.Patch for Microsoft Outlook security vulnerability.U.S. Military Warns Outlook Users To Update Immediately Over Hack Linked To Iran — Forbes.U.S. Cyber Command Shares Malware via VirusTotal — SecurityWeek.Steve Buscemi Swapped On Jennifer Lawrence — YouTube.Fake voices 'help cyber-crooks steal cash' — BBC News.New AI deepfake app creates nude images of women in seconds — The Verge.Horrifying DeepNude App Undresses a Photo of Any Woman With a Single Click — Motherboard.Learn how to spot deepfake videos — Slate.507 Mechanical Movements.‘Born a Crime,’ Trevor Noah’s Raw Account of Life Under Apartheid — The New York Times.The global tree restoration potential — Science.How to erase 100 years of carbon emissions? Plant trees—lots of them — National Geographic.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Support us on Patreon!
July 3, 2019
We take a bloodied baseball bat to Android malware, and debate the merits of a social media strike, as one of the team bites the bullet and buys a smart lock for the office. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Oli Skertchly. Visit https://www.smashingsecurity.com/135 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Oli Skertchly.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:This scary game app is coming for your credentials — Wandera.App vetting: How do you measure the risk level of risky apps? — Wandera.The not so ultra lock — Pen Test Partners.Cat playing the flute — Twitter.Proposing a 'Declaration of Digital Independence' — Wired.Declaration of Digital Independence — Larry Sanger.@gcluley@infosec.exchange — Follow Graham on Mastodon.The Fediverse — Wikipedia.Apollo 11 in Real-time.Dark — Netflix.Amazon reviews of the Chillow cooling pillow.The Best Cooling Pillows for Night Sweats — Health.com.Oli Skertchly on Instagram.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 26, 2019
Scammers steal millions by impersonating a French politician, we offer fashion tips for DDoS attackers, and hear how a small town fought a sextortionist preying on young women. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker. Visit https://www.smashingsecurity.com/134 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Jessica Barker.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Edgewise Networks: Edgewise is the industry's first zero-trust segmentation platform. It’s simple to use interface lets you stops data breaches by allowing only verified software to communicate within your cloud or data centre. Edgewise's data-centric approach makes micro-segmentation simpler and more secure. Learn more and get a free trial at edgewise.net.Support Smashing SecurityLinks:Anonymous hacker exposed after dropping USB drive while throwing Molotov cocktail — ZDNet.18 maanden cel voor hacker die website Crelan en pizzeria plat legde — HLN.The fake French minister in a silicone mask who stole millions — BBC News.He Cyberstalked Teen Girls for Years—Then They Fought Back — Wired.Childline — A counselling service for children and young people in the UK.Cyberbullying information — FTC.Information and resources to curb the growing problem of cyberbullying — National Crime Prevention Council.The Coddling of the American Mind.Depression, anxiety, suicide increase in teens and young adults, study finds — CBS News.Dreyer's English by Benjamin Dreyer — Penguin Random House.Stay Tuned: The Laws of Language (with Ben Dreyer).The Defiant Ones (trailer) — YouTube.The Defiant Ones — HBO.myNoise.netNCSC CyberThreat 2019 (London, GB).Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 19, 2019
We head to Hong Kong to look at how technology has helped anti-government protesters (and how China has tried to disrupt it), Samsung is skittish over whether to tell TV owners to virus-scan their devices, and you won't believe whose website is not GDPR-compliant. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by James Thomson. Visit https://www.smashingsecurity.com/133 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. "Chickens!" Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: James Thomson.Sponsored By:Edgewise Networks: Edgewise is the industry's first zero-trust segmentation platform. It’s simple to use interface lets you stops data breaches by allowing only verified software to communicate within your cloud or data centre. Edgewise's data-centric approach makes micro-segmentation simpler and more secure. Learn more and get a free trial at edgewise.net.MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:Information about Cookies — ICO.All About Do Not Track.Apple is removing the Do Not Track toggle from Safari, but for a good reason — Macworld.Google Chrome privacy extension hasn't been updated for years — Graham Cluley.Tweet by Adam Rose — Twitter.Cookie Control plugin — Civic.China social media: WeChat and the Surveillance State — Stephen McDonell, BBC News.DDoS attack that knocked Telegram secure messaging service offline — Tripwire.Inside China's 'thought transformation' camps — BBC News.Scan your TV to prevent malware — Samsung.Samsung Deletes Frightening Tweet Warning That Its Smart TVs Can Get Viruses — Gizmodo.​Samsung: Here's how we're securing your smart TV — ZDNet.Is the CIA's Weeping Angel spying on TV viewers? — Graham Cluley.Samsung's Android Replacement Is a Hacker's Dream — Motherboard.All of the Mueller report’s major findings in less than 30 minutes — PBS NewsHour, YouTube.СтопХам - Урок географии — YouTube.Where Mimes Patrolled the Streets and the Mayor Was Superman — New York Times.Documentaries - watch free online documentaries — IHaveNoTV.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 12, 2019
United States Customs and Border Protection had sensitive data stolen, but the hackers didn't have to breach its network. Apple has ambitious plans to make iPhone users safer online. And trolls are using Twitter lists to target their victims. All this and much much more is discussed in the latest edition of the MULTI-AWARD-WINNING "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Maria Varmazis. Visit https://www.smashingsecurity.com/132 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:Edgewise Networks: Edgewise is the industry's first zero-trust segmentation platform. It’s simple to use interface lets you stops data breaches by allowing only verified software to communicate within your cloud or data centre. Edgewise's data-centric approach makes micro-segmentation simpler and more secure. Learn more and get a free trial at edgewise.net.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Smashing Security named the Best Security Podcast — Graham Cluley.U.S. Customs and Border Protection says photos of travelers into and out of the country were recently taken in a data breach — Washington Post.Maker of US border's license-plate scanning tech ransacked by hacker, blueprints and files dumped online — The Register.US border cops confirm: Maker of America's license-plate, driver recognition tech hacked, camera images swiped — The Register.Tweet from Sam Soffes.Apple previews iOS 13 — Apple.Sign In with Apple human user interface guidelines — Apple.How trolls use Twitter lists to target and harass other users — CNBC.Trolls get tricky on Twitter with targeted harassment lists — Kim Komando.10 hours worth of the original Firestorm TV series (Japanese, with English subtitles) — YouTube.Gerry Anderson’s Firestorm Exclusive FULL Minisode — YouTube.Gerry Anderson's Firestorm — A brand new science fiction series from the creator of Thunderbirds (or, more precisely, his son).AITA — Reddit.Ecosia - the search engine that plants trees.Ecosia privacy policy and the data it collects.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
June 5, 2019
Microsoft issues warning to unpatched Windows users about worm risk, and how do you delete all traces of yourself off the internet after you murder your podcast co-host? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who aren't joined by a special guest this week. Visit https://www.smashingsecurity.com/131 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceMetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:WannaCry ransomware hits systems worldwide — Graham Cluley.WannaCry - Who's to blame? — Smashing Security #021.Remote Desktop Services Remote Code Execution Vulnerability CVE-2019-0708 — Microsoft.A Reminder to Update Your Systems to Prevent a Worm — Microsoft.Microsoft practically begs Windows users to fix wormable BlueKeep flaw — Ars Technica.Almost One Million Vulnerable to BlueKeep Vuln (CVE-2019-0708) — Errata Security.Intense scanning activity detected for BlueKeep RDP flaw — ZDNet.Greatest Love Of All (Official Music Video) - Whitney Houston — YouTube.DeleteMe.Deseat.me.Removing Content From Google.I want to know how to go about deleting everything about myself online — Reddit.Remove yourself from the internet, hide your identity, and erase your online presence — ZDNet.Chernobyl Trailer — YouTube.The 23-Year-Old Woman Who Pioneered Investigative Journalism — The Atlantic.Undercover in an Insane Asylum: How a 23-Year-Old Changed Journalism — YouTube.Nellie Bly — Wikipedia.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 30, 2019
You won't believe who had to report themselves to the data protection agency for a breach, or who has been sharing doctored videos of political rivals, or how much money you can make selling a laptop infected with malware... and how Carole gets her diva on. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who aren't joined by a guest this week. Visit https://www.smashingsecurity.com/130 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Final chance to vote for Smashing Security!Apple Podcasts New & Noteworthy, What’s Hot Sections Are Back — Kate Erickson.When selling security awareness training by email, probably a good shout not to hit 'reply all' — The Register.Ghostery Email Incident Update — Ghostery.NHS IT bod sends test email to 850k users – and then responses are sent 'reply all' — The Register.Google mistakes the entire NHS for massive cyber-attacking botnet — The Register.UK NHS 850k Reply-all email fail: State health service blames Accenture — The Register.BCC warning when emailing to many TO/CC recipients — SafeSend.SendGuard for Outlook.Privacywaakhond AP blundert met cc-knop — Computable.Tweet by Jeroen Terstegge.Canada Plans Fines for Tech Companies That Spread Disinformation — Motherboard.#DeleteFacebook: Twitter Users Urge People To Deactivate Accounts After Fake Nancy Pelosi Video Goes Viral — Newsweek.Half of European voters may have viewed Russian-backed ‘fake news’ — Politico.Inside Facebook's war room: the battle to protect EU elections — The Guardian.The Nancy Pelosi Videos Are Part of a Long GOP Campaign — The Atlantic.Mona Lisa 'brought to life' with deepfake AI — BBC News.The Persistence Of Chaos — Guo O Dong.Samantha-Antoinette Smith.Samantha Antoinette - Don't You Know Baby - Copenhagen Blues Festival 2016 — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 22, 2019
Don't hire a hacker, they might scam you! What works and what doesn't when it comes to protecting your email account? And China's controversial social credit system comes under the microscope. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Visit https://www.smashingsecurity.com/129 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Vote for Smashing Security in the EU Security Blogger Awards"How to hack a Facebook account..." - how on earth to answer? — Graham Cluley.Hack for Hire: Exploring the Emerging Marketfor Account Hijacking — Report from University of California, San Diego and Google.Google research: Most hacker-for-hire services are frauds — ZDNet.New research: How effective is basic account hygiene at preventing hijacking — Google Online Security Blog.The complicated truth about China's social credit system — Wired.China bans 23m from buying travel tickets as part of 'social credit' system — The Guardian.Is China’s social credit system as Orwellian as it sounds? — MIT Technology Review.Opinion: Why India needs to be wary of China-style social credit ratings — LiveMInt.Mihail Tal vs. Vassily Smyslov // Sacrificial Maniac vs. Positional Maestro — YouTube.Outray Chess — YouTube.What We Left Behind: Looking Back at Star Trek: Deep Space Nine — A documentary film produced by 455 Films.DS9 Doc Heads To Uk & Ireland - List of Locations — TrekSphere.Joe Rogan — Wikipedia.Tesla’s Elon Musk smokes weed on Joe Rogan podcast, havoc ensues - Vox — Vox.Faux Rogan — Can you tell which are real or fake (Faux Rogan)?Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 15, 2019
A bad software update causes big headaches for Dutch police, but brings temporary freedom to criminals. SIM swaps are in the news again as fraudsters steal millions. And does your cloud photo storage service have a dirty little secret? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Rip Off Britain's David McClelland. Visit https://www.smashingsecurity.com/128 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David McClelland.Sponsored By:Gartner: Gartner's Security & Risk Management Summit, running from June 17-20 2019 in National Harbor, Maryland, is the premier cybersecurity conference for CISOs, IT Security & Risk Professionals. Get the latest unbiased research and advice on cyber attacks, and emerging technologies including AI, blockchain, machine-learning and more. Visit smashingsecurity.com/gartner to find out more. Smashing Security listeners can save $350 off the standard registration rate by using the code "SMASHING". Promo Code: SMASHINGRecorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Vote for Smashing Security in the EU Security Blogger Awards Software update crashes police ankle monitors in the Netherlands — ZDNet.Irishman facing more than 100 years in US prison for alleged $2.5m cryptocurrency fraud — Independent.ieU.S. investor awarded $75 million in cryptocurrency crime case — Reuters.The SIM Swap Fix That the US Isn't Using — Wired.Everalbum Photo Organizing App — YouTube.Facial recognition's 'dirty little secret': Millions of online photos scraped without consent — NBC News.Everalbum Review — Good Housekeeping.OverSimplified — YouTube.CGP Grey — YouTube.The Difference between the United Kingdom, Great Britain and England Explained — YouTube.BBC One - Rip Off Britain, Series 11, Episode 3 — BBC iPlayer.All The Stations.Get a Spine! — This American Life.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 8, 2019
Israel strikes back at Hamas's hacking HQ, a new sextortion email comes with a twist, and Carole saves the world with some help from hacked Roomba vacuum cleaners. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Malicious Life's Ran Levi. Visit https://www.smashingsecurity.com/127 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Ran Levi.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Gartner: Gartner's Security & Risk Management Summit, running from June 17-20 2019 in National Harbor, Maryland, is the premier cybersecurity conference for CISOs, IT Security & Risk Professionals. Get the latest unbiased research and advice on cyber attacks, and emerging technologies including AI, blockchain, machine-learning and more. Visit smashingsecurity.com/gartner to find out more. Smashing Security listeners can save $350 off the standard registration rate by using the code "SMASHING". Promo Code: SMASHINGMetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:New Extortion Email Scam Threatens to Release Your Sex Tape — Bleeping Computer.Here's what an Ashley Madison blackmail letter looks like — Graham Cluley.Suicide and Ashley Madison — Graham Cluley.Israel bombs building containing alleged Hamas hackers — Graham Cluley.IDF says it thwarted a Hamas cyber attack during weekend battle — Times of Israel.Israel: Hamas Tried to Spy on Soldiers With Fake Dating Apps — Bloomberg.Ransomware attack on Israeli users fails miserably due to coding error — ZDNet.Michael Reeves on Twitter.A Robot That Picks Tomatoes Out of Your Salad — YouTube.A Robot That Shoots Energy Drink at You When You Get Tired — YouTube.Consumption of Tide Pods — Wikipedia.The Roomba That Screams When it Bumps Into Stuff — YouTube.This Person Does Not Exist.Have they faked me?Drugslab — YouTube.The Hows and Whys of Influencing People — Reddit.How Master Manipulators Conceal Their Intentions — Kletische.How to Win Friends and Influence People — Wikipedia.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
May 1, 2019
What's the worst that can happen if you join a Hollywood hard man's Facebook page? What drove a man to hijack a website's name at gunpoint? And can you solve the mystery of the Canadian Hamburglar? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security's Mark Stockley. Visit https://www.smashingsecurity.com/126 to check out this episode’s show notes and episode links. Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Mark Stockley.Sponsored By:Gartner: Gartner's Security & Risk Management Summit, running from June 17-20 2019 in National Harbor, Maryland, is the premier cybersecurity conference for CISOs, IT Security & Risk Professionals. Get the latest unbiased research and advice on cyber attacks, and emerging technologies including AI, blockchain, machine-learning and more. Visit smashingsecurity.com/gartner to find out more. Smashing Security listeners can save $350 off the standard registration rate by using the code "SMASHING". Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:Fraudster poses as Jason Statham to steal victim's money — BBC News.Nine men arrested in United States for stealing millions through business email compromise and romance scams — Graham Cluley.Twitter Hack: Part Of Broader Iranian Strategy — TechCrunch.Hackers Hit Google Palestine and Defaced the Front Page — Gizmodo.Gunpoint domain hijack turns out to have been a family affair — Naked Security.Jury Convicts Social Media Entrepreneur in Plot to Hijack Internet Domain — Department of Justice.Hamburglar strikes again, feasts on $2,000 in meals using customer's McDonald's app — CBC News.McDonalds UK TV Advert 1983 featuring Hamburglar — YouTube.How Animators Created the Spider-Verse | WIRED — YouTube.How 'Spider-Man: Into The Spider-Verse' Was Animated | Movies Insider — YouTube.Cool Math.IQ Ball — Carole's favourite game on Cool Math.CoolMath4Kids.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 24, 2019
WannaCry's "accidental hero" pleads guilty to malware charges, Samsung and Nokia have fingerprint fumbles, the NCSC publishes a list of 100,000 dreadful passwords, and Apple finds itself at the centre of an identity mix-up. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by John Hawes. Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: John Hawes.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:"Gents! Stop airdropping your pics!" — Smashing Security episode 038, where we discussed the arrest of Marcus Hutchins.Marcus Hutchins plea agreement — PDFStatement from Marcus Hutchins (aka MalwareTech)"Stick to the good side." — Marcus Hutchins on Twitter.The Samsung Galaxy S10's ultrasonic fingerprint scanner is hacked — Graham Cluley.Video of Nokia 9's fingerprint sensor failure — Decoded Pixel on Twitter.Nokia 9 buggy update lets anyone bypass fingerprint scanner with a pack of gum — ZDNet.Most hacked passwords revealed as UK cyber survey exposes gaps in online security — NCSC.Facebook hoovered up 1.5 million users' email contacts without permission... "unintentionally" — Graham Cluley.Facebook: we logged 100x more Instagram plaintext passwords than we thought — Naked Security.Second Payment Services Directive (PSD2): 8 things businesses needs to know — Information Age.Teen sues Apple over accusations of Apple Store thefts — 9to5MacStudent Sues Apple for $1 Billion, Blames Face-Recognition Tech for False Arrest — Insurance Journal.Thunderbirds - 50th Anniversary Specials — Century 21 filmsThunderbirds 1965 - Documentary — YouTube.Clash Royale: Enter the Arena.Oxfordshire Artweeks.Details of Carole and John's exhibition — Oxfordshire Artweeks.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 17, 2019
The hacker who lived the high life after spreading malware via porn sites, Wipro demonstrates how to turn a cybersecurity crisis into a PR disaster, and why are humans listening in to your Alexa conversations? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Brian Honan. Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Brian Honan.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:Hacker from Russian crime group jailed for multi-million pound global blackmail conspiracy — NCA.The No More Ransom Project.Experts: Breach at IT Outsourcing Giant Wipro — Krebs on Security.Statement from Wipro Limited confirming security breach.TalkTalk phone scams: arrests made at Indian call center — Graham Cluley.How Not to Acknowledge a Data Breach — Krebs on Security.
April 10, 2019
With Graham incapacitated, we drag an episode out from the archives. In this special "splinter" episode of the "Smashing Security" podcast from September 2017 we tackle the tricky subject of backups - When did you last backup your data? How and what should you backup? And where should you store them? Lots of questions and Graham gets to do his Tina Turner impression. All this and more is discussed in this edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:Tina Turner - Private Dancer — YouTube.The Baranton Sisters foot juggling tables — YouTube.How to create a robust data backup plan (and make sure it works)How to back up your iPhone, iPad, and iPod touch — Apple Support.How to back up your Android phone or tablet: The ultimate guide — Android Central.Crashplan stops offering its consumer backup solutionCarbonite cloud backupBackblaze Online BackupMozy Cloud Storage & BackupAmazon GlacierCloudBerry Lab - Cross-Platform Cloud BackupSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
April 3, 2019
Office Depot and OfficeMax are fined millions for tricking customers into thinking their computers were infected with malware, car alarms can make your vehicle less secure, and facial recognition in apartment blocks comes under the microscope. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Is Office Depot diagnosing non-existent computer problems? — YouTube.Office Depot and Tech Support Firm Will Pay $35 Million to Settle FTC Allegations That They Tricked Consumers into Buying Costly Computer Repair Services — FTC.Alarming vulnerabilities in automotive security systems — The Cyberwire.Gone in six seconds? Exploiting car alarms — Pen Test Partners.The Landlord Wants Facial Recognition in Its Rent-Stabilized Buildings. Why? — New York Times.Brooklyn Landlord Wants To Install Facial Recognition Tech At Rent-Stabilized Complex — Gothamist.New key-less Moscow apartments use facial recognition to open doors and elevators — Achinect.Study finds gender and skin-type bias in commercial artificial-intelligence systems — MIT News.The woman who doesn't feel pain — BBC News.TVR Exploring — YouTube.Lost Dutchman's Gold — BBC Games Archive.Dirty John: The Dirty Truth — Netflix.A Complete Timeline of the Events of Dirty John — Harper's Bazaar.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 28, 2019
An app leaking private conversations and intimate photographs is ignoring requests to fix the problem, hackers poison a security update sent to ASUS PCs, and how to protect your privacy in motel rooms. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:Mimecast: Grab your FREE Cybersecurity Awareness Training Kit from Mimecast, and share it throughout your company. Give your employees the information they need to make the best cybersecurity decisions. Get your free kit at smashingsecurity.com/mimecastSupport Smashing SecurityLinks:Varmazis.gr - The hot sauce factory.This Spyware Data Leak Is So Bad We Can't Even Tell You About It — Motherboard.A family tracking app was leaking real-time location data — TechCrunch.Popular family tracking app exposed real-time location data onto the internet – no password required — Hot for Security.Hosting Provider Finally Takes Down Spyware Leak of Thousands of Photos and Phone Calls — Motherboard.security.txt | A proposed standard which allows websites to define security policies.Hackers Hijacked ASUS Software Updates to Install Backdoors on Thousands of Computers — Motherboard.Operation ShadowHammer — Kaspersky.Shadow Hammer APT MAC Check.ASUS Settles FTC Charges That Insecure Home Routers and “Cloud” Services Put Consumers’ Privacy At Risk — Federal Trade Commission.ASUSFourceUpdater.exe is trying to do some mystery update, but it won't say what... — Reddit.Asus implements fix for malware attack — Reuters.ASUS response to the recent media reports regarding ASUS Live Update tool attack by Advanced Persistent Threat (APT) groups.Passion for life: Self-expansion and passionate love across the life span — Journal of Social and Personal Relationships.So THAT'S Why Hotel Sex Is So Much Better Than At Home — Huffington Post.South Korea arrests two for spy cameras that livestreamed 1,600 motel guests — Reuters.Zach King magic tricks — YouTube.Killed by Google - The Google Graveyard & Cemetery.Outline - Read & annotate without distractions.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 21, 2019
Online drug dealers get busted due to poor OPSEC! People are still failing to wipe their USB sticks properly! A potential presidential candidate is outed as a former hacker! Flat Earthers! Pi! Empathy! All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Paul Ducklin.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:'It's like Uber, but for weed': Meet the man who revolutionized Israel's pot trade — Haaretz.Israel Police arrest top members of Telegrass online drug ring — Haaretz.Sources: Telegrass head cooperating with police — YNet News.You left WHAT on that USB drive?! — Naked Security.Cult of the Dead Cow — Wikipedia.Back Orifice — Wikipedia.Beto O’Rourke’s secret membership in America’s oldest hacking group — Reuters.Beto O’Rourke acknowledges involvement with hacking group as teen — The Texas Tribune.Behind the Curve.Behind the Curve - Official Release Trailer — YouTube.Serious Security: What we can all learn from PiDay — Naked Security.Drawabox — A free, exercise based approach to learning the fundamentals of drawing.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 14, 2019
A $150 million mansion is hijacked online, Brits will soon have to scan their passport to watch internet porn, and are organisations right to pay up when hit by ransomware? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology broadcaster David McClelland. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David McClelland.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Mimecast: Grab your FREE Cybersecurity Awareness Training Kit from Mimecast, and share it throughout your company. Give your employees the information they need to make the best cybersecurity decisions. Get your free kit at smashingsecurity.com/mimecastSupport Smashing SecurityLinks:What Is a Zillow Zestimate? — YouTube.Zillow sued over hacked listing of $150 million California mansion — Chicago Tribune.The Headington Shark, Oxford.UK Digital Economy Act 2017 — Legislation.gov.uk.AgeID | Your Access to the World of Age-Restricted Websites.CleanBrowsing DNS. — Free DNS Parental Control, DNS Filter and Web filter.Ray Charles - Georgia On My Mind — YouTube.Rural Jackson County, Georgia. recovering from ransomware attack — StateScoop.Georgia county pays a whopping $400,000 to get rid of a ransomware infection — ZDNet.Confidential report: Atlanta's cyber attack could hit $17 million — Atlanta Journal-Constitution.EmojiTetra (@EmojiTetra) on Twitter.Emoji Snake Game (@EmojiSnakeGame) on Twitter.The Butterfly Effect — Podcast with Jon Ronson.So You've Been Publicly Shamed — Amazon.com.How old do I look?Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
March 7, 2019
Twerking robot assistants, an app from Saudi Arabia that lets men track women, and a gnarly skiing security snarl-up! Oh, and find out how a didgeridoo could change your life and that of your loved ones. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:A Jibo twerking — YouTube.Tweet by Dylan Martin about Jibo — Twitter.After Being Sold to a VC Firm, this $899 IoT Robot Will Soon Brick Itself — Motherboard.Your $350 Nike self-lacing sneakers aren't as smart as you hoped — Graham Cluley.Absher app — Wikipedia.Apple and Google Urged to Dump Saudi App That Lets Men Track Women — New York Times.Hacking ski helmet audio — Pen Test Partners.That's a nice ski speaker you've got there. Shame if it got pwned — The Register.Fleabag is back - and she's found religion — BBC News.Fleabag — BBC iPlayer.Jill Abramson: Ex-New York Times editor accused of plagiarism — BBC News.Password advice. Don't tell people to not reuse passwords. You might get a letter from this guy's solicitors... — Twitter.Moneyland: Why Thieves And Crooks Now Rule The World And How To Take It Back — Amazon.com.Play the Didgeridoo for Sleep Apnea and Snoring Relief — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
February 28, 2019
Why is Tampa's mayor tweeting about blowing up the airport? Are hackers trying to connect with you via LinkedIn? And has Maria succeeded in her attempt to survive February without Facebook? All this and much much more in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Plus, after last week's discussion about the legal battle between Mondelez and Zurich Insurance, we have a chat with security veteran Martin Overton to take a deeper look into cyberinsurance. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Maria Varmazis and Martin Overton.Sponsored By:Mimecast: Grab your FREE Cybersecurity Awareness Training Kit from Mimecast, and share it throughout your company. Give your employees the information they need to make the best cybersecurity decisions. Get your free kit at smashingsecurity.com/mimecastLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Pornography, racism and threats of missile attack fill Tampa mayor's Twitter feed during hack — WTSP News.How to use the Teams feature on TweetDeck — Twitter.I Blocked Amazon, Facebook, Google, Microsoft, and Apple — Gizmodo.Half Of U.S. Employees Are Actively Searching For A New Job — Forbes.Fake Jobs: Campaigns Delivering More_eggs Backdoor via Fake Job Offers — Proofpoint.Perfect night in — A podcast by Neil Perryman.Tetris® 99 for Nintendo Switch — Nintendo.Every British swear word has been officially ranked in order of offensiveness — The Independent.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
February 21, 2019
How would you track someone who owed you money? What was the colossal flaw Facebook left on its website for anyone to exploit and hijack accounts? And what excuse are insurance companies giving for not paying victims of the NotPetya malware millions of dollars? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Joe Carrigan of the Information Security Institute at Johns Hopkins University. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, Castbox, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Joe Carrigan.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:In first such case, Chinese police arrest hacker for selling tracking app to debt collectors — Global Times.Ravenous Bugblatter Beast of Traal — Urban Dictionary."I just had to download a software update for my shoes" — Thread from @GK3 on Twitter.Marty McFly Gets Power Laces — YouTube.Nike Adapt BB Self-Lacing Shoe — SneakerNews.Here's Why the Nike Adapt BB Is Worth $350 — YouTube.Facebook CSRF protection bypass which leads to Account Takeover — Samm0uda.Everything you need to know about the Petya, er, NotPetya nasty trashing PCs worldwide — The Register.The Untold Story of NotPetya, the Most Devastating Cyberattack in History — Wired.A Moment of Truth for Cyber Insurance — Lawfare.Manufacturers Remain Slow to Recognize Cybersecurity Risks — New York Times.UK and US blame Russia for 'malicious' NotPetya cyber-attack — BBC News.thispersondoesnotexist.com.This website uses AI to generate faces of people who don't exist — Mashable.ESPN+Trevor Moore: The Story of Our Times - "My Computer Just Became Self Aware" — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
February 14, 2019
Is two factor authentication such a pain in the rear end that it's costing the economy millions? Do you feel safe having a Google Nest in your home? And don't get caught by a catfisher this Valentine's Day. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by B J Mendelson. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, Castbox, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: B J Mendelson.Sponsored By:Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Hello by Lionel Richie — YouTube.Apple being sued because two-factor authentication on an iPhone or Mac takes too much time — Apple Insider.Brodsky versus Apple, alleging that two-factor authentication is abusive to users — Class action complaint.'Why are you looking at me? I see you watching me.' Smart devices like Nest getting hacked in digital home invasions — Chicago Tribune.8-year-old 'scared to death' after hacked Nest security camera warns of missile attack — Bitdefender.Letter in The Times, "Alexa gets fired up" — Reddit.Diana Rigg — Wikipedia.Scam alert: £50 million lost to romance and online dating scams — Which?17 Of The Most Insane Catfish Stories That Will Make You Cringe — Buzzfeed.How Expensive Are Catfishing Scams? See Where Your State Ranks — High Speed Internet.It's National Catfish Day, So Here Are 8 Bizarre Catfishing Stories To Remind You That Sometimes The Internet Is A Blackhole Of Awful — Bustle.How Long to Read — HowLongToReadThis.com.How Long to Read The Joy of Sex: The Ultimate Revised Edition — HowLongToReadThis.com.Music telling someone to get off the stage at the Grammy Awards — YouTube.B J Mendelson's "A Christmas Carol"The Sopranos — HBO.Soul Mates — What If?Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Smashing Security on Reddit.
February 7, 2019
Jack Rhysider from the "Darknet Diaries" podcast joins us to chat about his interview with the elusive Hacker Giraffe, how a death is preventing cryptocurrency investors from reaching their money, and how 'beauty camera' apps are redirecting users to phishing websites and stealing their selfies. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jack Rhysider of the "Darknet Diaries" podcast. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Jack Rhysider.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:This hypnotist helps people recover lost bitcoin passwords — CNBC.Good News! You Are a Bitcoin Millionaire. Bad News! You Forgot Your Password — Wall Street Journal.Quadriga CX announces the death of their CEO Gerald Cotten — Facebook.Set Up and Manage Emergency Access — LastPass.What is the Emergency feature and how to use it? — Dashlane.Inactive Account Manager — Google.Banks Hate Crypto In Canada: QuadrigaCX Exchange Sees $28M Frozen — NewsBTC.QuadrigaCX Owes Customers $190 Million, Court Filing Shows — Coindesk.John Darwin ("Canoe man") disappearance case — Wikipedia.Is it ever acceptable for a journalist to hack into somebody else’s email? — Naked Security.Hacker Giraffe — Darknet Diaries podcast.The PewDiePie Hackers: Could hacking printers ruin your life? — BBC News.Smashing Security on Hacker Giraffe's printer hacking exploits.Behind the apps: Why we want to look different online — BBC News.Various Google Play 'Beauty Camera' Apps Send Users Pornographic Content, Redirect Them to Phishing Websites and Collect Their Pictures — Trend Micro.Mr. Puzzle — YouTube.Dawn of the Code War: America's Battle Against Russia, China, and the Rising Global Cyber Threat — Amazon.Everything That Will Kill You... From A to Z — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 31, 2019
A FaceTime bug allows callers to see and hear you before you answer the phone, Facebook's Nick Clegg tries to convince us the social network is changing its ways, and IoT hacking is big in Japan. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by John Hawes from AMTSO. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: John Hawes.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice.Support Smashing SecurityLinks:Smashing Security on Reddit.Apple has a huge privacy ad at CES 2019 — CNBC.Apple races to fix FaceTime bug that lets you spy on someone *before* they pick up your call — Graham Cluley.Tweet about teen who found FaceTime issue — Tweet from MGT7.iPhone Facetime Hack (EMBARRASSING!) Caught Slippin — YouTube (NSFW).A discussion with Nick Clegg — Facebook Brussels.Facebook pledges to do more on self-harm — BBC News.World Happiness Report — Wikipedia.2020 Olympics: Japanese chains scrap porn magazines — BBC News. Japan’s Cybersecurity Strategy (PDF).Govt. to access home devices in security survey — NHK.Japan plans to hack into millions of its citizens’ connected devices — MIT Technology Review.Alphaville - Big In Japan (Official Music Video) — YouTube.Teletext — YouTube.Teletext generator — Teletext the World.The teletext versions of Graham, Carole, and John Hawes — Twitter.Cosmic Eye — YouTube.ChronoZoom.Putting Time In Perspective — Wait But Why.Cows: Small Or Far Away? | Father Ted — YouTube.Jonathan Pie's American Pie — BBC Three.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 24, 2019
Business email compromise evolves to target your company's payroll, how the world's largest gold coin was stolen from a Berlin museum, and are internet giants feeling the heat yet over data security? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by people hacker Jenny Radcliffe. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Jenny Radcliffe.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:Smashing Security on RedditBusiness Email Compromise Scams Have Netted $12.5 Billion, Says FBI — Bitdefender.The 2 Investigators: Theft By 'Business Email Compromise' — YouTube.The Secret of My Success Soundtrack - "Oh yeah" by Yello — YouTube.How one company lost $44 million through an email scam — Tripwire.BEC Gangs Focus on Executives for Payroll Diversion Scams — Agari.Daring robbery: Rare gold coin worth millions stolen from Berlin’s Bode Museum — YouTube.Trial begins for 4 accused in gold coin heist — CBC.Four men go on trial for giant gold coin heist from Berlin museum — The Guardian.The CNIL’s restricted committee imposes a financial penalty of 50 Million euros against Google — CNIL.Portuguese hospital appeals GDPR fine — IT Governance blog.German chat site faces fine under GDPR after data breach — We Live Security.First GDPR fine issued by Austrian data protection regulator — Freshfields Digital.F.T.C. Is Said to Be Considering Large Facebook Fines — The New York TImes.The Office Quest Game.Office Quest - Nintendo Switch Official Trailer — YouTube.Radioactive wild boars rampaging around Fukushima nuclear site — The Independent.Maniac — Netflix.Waking Up Podcast #145 - The Information War — Sam Harris.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 17, 2019
Why a business spat resulted in Liberia falling off the internet, how the US Government shutdown is impacting website security, and the perplexing world of extreme IoT devices. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Zoë Rose. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Zoë Rose.Sponsored By:Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice.LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Mirai Botnet DDoS (Sky News) — YouTube.Massive Cyber Attack Knocks Out Access To Websites (CNBC) — YouTube.Download the Mirai source code, and you can run your own IoT botnet — Graham Cluley.The makers of the Mirai IoT-hijacking botnet are sentenced — Tripwire State of Security.Danny Kaye — Wikipedia."Wonderful Copenhagen" — Danny Kaye from the movie "Hans Christian Andersen".International hacker-for-hire jailed for cyber attacks on Liberian telecommunications provider — National Crime Agency.Courts Hand Down Hard Jail Time for DDoS — Krebs on Security.Liberian ISP sues rival for hiring hacker to attack its network — ZDNet..gov security falters during U.S. shutdown — Netcraft.TLS Certificates for Many .gov Domains Not Renewed Due to Government Shutdown — Security Week.Owlet.Snuza.These ‘extreme baby monitors’ claim to track your child’s breathing, heartbeat and every movement — MarketWatch.Fisher-Price’s wearable baby monitor is an unreliable rash machine — Engadget.Threema - Seriously secure messaging.Africa by Toto to play 'for all eternity' in Namib desert — YouTube.Africa by Toto to play on eternal loop 'down in Africa' — BBC News."The Brain: The Story of You" by David Eagleman — Amazon."The Coddling of the American Mind: How Good Intentions and Bad Ideas Are Setting Up a Generation for Failure" by Greg Lukianoff — Amazon.How Trigger Warnings Are Hurting Mental Health on Campus — The Atlantic.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
January 10, 2019
Twitter and the not-so-ethical hacking of celebrity accounts, study discovers how you can pay someone to quit Facebook for a year, and the millions of dollars you can make from uncovering software vulnerabilities. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you. "The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks. Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Dad pays girl $200 to give up Facebook — YouTube.How much is social media worth? Estimating the value of Facebook by paying users to stop using it — PLOS.Being paid to quit Facebook — Graham Cluley.This account has been hijacked (temporarily)! — Insinia.Security firm hijacks high-profile Twitter accounts — BBC News.'Serious' Twitter flaw allows hackers to post on other people's accounts — Computer Weekly.Twitter is Broken — The AntiSocial Engineer.About Twitter's SMS PIN feature — Twitter.How to Tweet via text message — Twitter.Earn $2,000,000 by remotely jailbreaking an iPhone — Graham Cluley.Zerodium Offers $2 Million for iOS Hacks, $1 Million for Chat App Exploits — Security Week.Life as a bug bounty hunter: a struggle every day, just to get paid — MIT Technology Review.Yahoo changes bug bounty policy following 't-shirt gate' — ZDNet.Equifax Was Warned — Motherboard.Remove Background from Image - remove.bg.'Tidying Up With Marie Kondo' Is a Quiet Delight — The Atlantic.Tidying Up with Marie Kondo | Official Trailer — YouTube.Bear Brook podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
December 20, 2018
Join us for our special Christmas episode as we tell tales of printer hacking, website defacement, Grinches, and how Google is snooping on your private YouTube videos. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Dave Bittner from The Cyberwire. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:Smashing Security: We're sponsoring ourselves this week! Get in touch at studio@smashingsecurity.com if you're interested in partnering with us for a future episode of the show.Support Smashing SecurityLinks:PewDiePie printer hackers strike again — BBC News.ASCII art attack — Smashing Security episode 007.TheHackerGiraffe — Patreon.Buying PewDiePie a $1M Billboard in Times Square! — YouTube.I Bought Every Billboard In My City For This — YouTube.PewDiePie Billboards in INDIA | T-Series vs PewDiePie — YouTube.WSJ website defaced by PewDiePie fan in ongoing YouTube subscribers battle — ZDNet.Disney Severs Ties With YouTube Star PewDiePie After Anti-Semitic Posts — Wall Street Journal.TheHackerGiraffe comments on WSJ defacement — Twitter.Cockwomble definition — Urban Dictionary.The Wombles Season 1 — YouTube.YouTube is reading text in users’ videos — Naked Security.Google is Scanning for (and Crawling) URLs in Your Private YouTube Videos — Austin Burk.Santa's Little Helpers — Reddit.Posts about Christmas Grinches — Reddit.You're a Mean One, Mr. Grinch — Flearoy.Paul McCartney at O2 Arena, London — YouTube.Ronnie Wood praised by fans as he catches TUBE home after joining Paul McCartney on stage — Daily Mail.Paul McCartney Carpool Karaoke — YouTube.Wild Thing podcast.Analysis, The Replication Crisis — BBC Radio Four.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
December 13, 2018
The curious case of George Duke-Cohan, Huawei's CFO finds herself in hot water, and the crazy world of mobile phone mental health apps. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guests Mikko Hyppönen from F-Secure and technology journalist Geoff White. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Geoff White and Mikko Hyppönen.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Three years in jail for teenager who spammed out school bomb threats, and made hoax call about hijacked plane — Graham Cluley.Schools bomb hoaxes: Bodycam shows George Duke-Cohan arrest — BBC News.Bomb Threat Hoaxer, DDos Boss Gets 3 Years — Krebs on Security.Estonian DDoS revenge worm crafter jailed — The Register.Canada could be at risk of ‘nasty’ retaliation from China — Vancouver Star.Bad news for scammers. Huawei executive Meng Wanzhou has been released on bail — Graham Cluley.Child advice chatbots fail to spot sexual abuse — BBC News.Alibaba already has a voice assistant way better than Google’s — MIT Technology Review.Making a Murderer — Netflix.Making a Murderer lawyer Kathleen Zellner is true crime's new star — BBC News.Rebutting a Murderer podcast — Spreaker.DOOM (Shareware Episode) — Internet Archive.Doom (1993 video game) — Wikipedia.Points of Egress — Love + Radio.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
December 6, 2018
Fitness apps exploit TouchID through a sneaky user interface trick, tech giants claim to have a plan to banish passwords, and you won't believe who was behind a sextortion scam that targeted over 400 members of the US military. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by ferret-loving ethical hacker Zoë Rose. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Zoë Rose.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Military criminal investigative organizations crack down on sextortion ring targeting service members — NCIS.Scam iOS apps promise fitness, steal money instead — WeLIveSecurity.Mastercard, Microsoft to Advance Digital Identity Innovations — Mastercard press release.China's Surveillance State Should Scare Everyone — The Atlantic.Mastercard and Microsoft to jointly develop universal digital ID technology — IT Pro.A Victorian point and click adventure game — Bertram Fiddle.Bertram Fiddle: A Bleaker Predicklement Trailer — YouTube.Oura Ring sleep and activity tracker.Learn how Oura ring works.Marriott warns of hack. 500 million Starwood hotel guests' personal data could be exposed — Graham Cluley.Marriott breach: What to do when hackers steal your passport number — CNet.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 29, 2018
How are scammers stealing your money through Google Maps? Why did the FBI create a fake FedEx website? And how are US senators hoping to stop Grinch bots ruining Christmas? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Maria Varmazis. And don't miss our special bonus interview about passwords with Rachael Stockton of LastPass, sponsors of this week's show. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guests: Maria Varmazis and Rachael Stockton.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:A new bank scam using Google Maps loophole — The Hindu.Google’s sorry that this crudely offensive image of the Apple logo turned up in Maps — The Washington Post.‘Edwards Snow Den’ infiltrates the White House on Google Maps — The Washington Post.The FBI Created a Fake FedEx Website to Unmask a Cybercriminal — Motherboard.what3words | Addressing the world.When the FBI rather than the fraudsters make a fake FedEx website — Graham Cluley.Fingerlings — YouTube.Lawmakers introduce bill to stop bots from ruining holiday shopping — CNET.The Internet Arcade.Alley Cat — The Internet Arcade.On November 26th, a mole will land on Mars — The Oatmeal.Why did Apple remove the iPhone headphone jack? — Fast Company.A simple, cheap and very reliable solution for phones without headphone jack — Reddit.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 22, 2018
Tesla takes customer service a step too far, is it a romantic gesture or stalking when you email 246 women called Nicole, and Carole finds herself in a Facebook dilemma. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Jessica Barker.Sponsored By:Smashing Security: We're sponsoring ourselves this week! Get in touch at studio@smashingsecurity.com if you're interested in partnering with us for a future episode of the show.Support Smashing SecurityLinks:How I Went From Tesla Delivery Hell To Tesla Giving Me Control Of Their Site Forums With Over 1.5 Million Tesla Account Contacts — DansDeals.com.Customer Complains About Tesla Forums, Tesla Accidentally Gives Him Control Over Them — Motherboard.A Guy Emailed 246 Nicoles Trying To Find The One He Met At A Bar And Now They're All Friends — Buzzfeed News.Facebook exodus: 44 percent of American users ages 18-29 have deleted app — CNBC.How Facebook employees reacted to NYT report on leadership, scandals — Business Insider.Delay, Deny and Deflect: How Facebook’s Leaders Fought Through Crisis — New York Times.Facebook’s top execs ‘make tobacco executives look like Mister Rogers’ — Recode.Facebook Morale, Hurt by Share Drop, Suffers Another Hit — Bloomberg.“I Hope It Cracks Who She Is Wide Open”: Inside Silicon Valley, Many Have Long Known Sheryl Sandberg Isn’t a Saint — Vanity Fair.Now eight parliaments are demanding Zuckerberg answers for Facebook scandals — TechCrunch.The Beatles - Glass Onion (2018 Mix) — YouTube.The Beatles (White Album) 50th Anniversary Edition — The Beatles.American Animals.Krissy Brierre-Davis (@krissys_kitchen) — Twitter.iPhone hack: Thousands of people just discovered the 'life-changing' space bar trick — The Independent.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 15, 2018
Does your employer want to turn you into a cyborg? Was this phishing test devised by an evil genius? And how did a cinema chain get scammed out of millions, time and time again...? Oh, and the subject of erasable pens comes up again. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Scott Helme. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Scott Helme.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Cinema Chain Sees Bad Movie Script Play Out As It Loses Millions In Email Scam — Martijn Grooten writes on Forbes.Internet con men ripped off Pathe NL for €19m in sophisticated fraud — DutchNews.nl.Court documents describing the scam — It's in Dutch. Don't ask us to translate it.Tweet from InfoSecSherpa describing diabolical phishing test.BBC Click on Twitter: "Could you be paying for things using just your hand?" — Scott Helme is filmed getting an implant.The future prospects of embedded microchips in humans as unique identifiers: the risks versus the rewards (PDF) — University of Wollongong, Australia.Alarm over talks to implant UK employees with microchips — The Guardian.I, Tonya trailer — YouTube.Rocketbook.Introducing Rocketbook Everlast — YouTube.Bohemian Rhapsody Performed in 42 Styles — YouTube.Open Culture.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 8, 2018
One travel blogger finds you don't have to be Kylie Jenner to be targeted by an Instagram hacker. When 40 iPhones at a hospital mysteriously die, what could be the explanation? And, surprise surprise, political parties in the USA are throwing around hacking accusations. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security's Mark Stockley. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Mark Stockley.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Kylie Jenner — Instagram.Hacker, angry over unpaid $200, deletes Abu Dhabi-based travel blogger's account — Gulf News.Of Travels & Tales — Delaine Maria D’Costa's blog.Delaine Maria D’Costa's Instagram accountIG hacked! — Delaine Maria D’Costa posts an Instagram story about how she was hacked.Instagram finally supports third-party authentication apps for greater account security — Graham Cluley.Spooky miasmic gas bricks hospital iPhones (mwah ha ha ha) — Naked Security.MRI disabled every iOS device in facility — Reddit.Voting Machine Manual Instructed Election Officials to Use Weak Passwords — Motherboard.After failed hacking attempt SoS launches investigation into Georgia Democratic party — Press release on Secretary of State's website (which, by the way, doesn't use HTTPS).Mid-term elections 2018: Race rows mire campaign home stretch — BBC News.The Cybersecurity 202: Brian Kemp's hacking allegations highlight the challenges of preserving voter confidence — The Washington Post.Georgia governor’s race roiled by election security charges — Associated Press.Elections security: Federal help or power grab? — Politico (2016).Georgia Officials Quietly Patched Security Holes They Said Didn't Exist — ProPublica.The Erasable Pen - Pilot Frixion - Gear for Back to School — YouTube.FriXion Family by PilotSapiens: A Brief History of Humankind by Yuval Noah Harari — We're not listing the Pick of the Week Mark eventually chose as it's too rude.Isle of Dogs movieSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
November 1, 2018
Who deserves to die in a driverless car crash? Who has been sniffing around the Girl Scouts' email account? And just how long would it take for a geologist to visit 9,000 adult web pages? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by journalist and "Friends" fan Dan Raywood. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dan Raywood.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Self-Driving Cars: The Ethical Dilemma — YouTube.Moral Machine — A platform for gathering a human perspective on moral decisions made by machine intelligence, such as self-driving cars.Moral Machine - Human Perspectives on Machine Ethics — YouTube.Girl Scouts' personal information affected by recent data breach — ABC30.Girl Scouts Alerted to Possible Data Breach — Infosecurity Magazine.Where does Girl Scout cookie money go? — SAS Learning Post.
October 24, 2018
A Facebook friend request leads to arrest, Twitter scams ride again via promoted ads, and adult websites expose their members. Oh, and Graham finds out what Rule 34 is. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Robber contacts victim on Facebook to apologize, Reading police say — Reading EagleMaria Varmazis spots a promoted, verified scam tweet — TwitterWhy is Elon Musk promoting this Bitcoin scam? (He’s not) — Naked SecurityTwitter thought Elon Musk's bizarre tweets were evidence he'd been hacked — Graham CluleyHack on 8 adult websites exposes oodles of intimate user data — Ars TechnicaWife Lovers website snapshot — Wayback MachineFriends Reunited — WikipediaThe Beano — WikipediaFormer CIA Chief Explains How Spies Use Disguises — YouTubeWhat Makes ‘The Good Place’ So Good? — The New York TimesThe Good Place Season 1 Trailer — YouTubeTrolley problem — WikipediaIRL Glasses Block All the Screens Around You — WiredIRL Glasses - Glasses that Block Screens by Ivan Cash — KickstarterSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
October 17, 2018
Yes, Smashing Security has reached its 100th episode! Despite our celebratory mood, we don't forget to take a look at the security stories of the last week - including an alarming IoT failure and a dating app disaster for Donald Trump devotees. All this and much more is discussed in this very special 100th edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice.Support Smashing SecurityLinks:The very first episode of Smashing Security: "One cup, two hotel guests" — Sorry about the poor audio quality. Turns out we got better...Yale UK announces some "unplanned network maintenance" — TwitterYale UK's network maintenance isn't going well — TwitterCllr Steve Wortley is not very happy with Yale UK — TwitterBeth is not impressed with Yale UK either — TwitterKirstie Pendry doesn't fancy waking her entire street at 5am — TwitterYale Smart Home Borkage: Server Issues Cause Alarm App Fail — Computer Business ReviewYale Weds: Just some system maintenance, nothing to worry about. Yale Thurs: Nobody's smart alarm app works — The RegisterHundreds of 'smart' locks bricked by flubbed remote update — Graham CluleyHotel guests locked in their rooms by ransomware? It doesn't make sense — Graham Cluley71% of Tinder users say political differences are a deal breaker — MSNBCNew Dating App for Trump Supporters Seeks to ‘Make America Date Again’ — NewsweekThe ‘Donald Daters’ Trump Dating App Exposed Its Users’ Data — MotherboardDonald Daters, a dating app for Trump supporters, leaked its users’ data — TechcrunchHow I “found” the database of the Donald Daters AppRobert Baptiste's video of Donald Daters vulnerability — TwitterBlue Peter — WikipediaTony Walsh's beautiful tribute to Blue Peter will give you goosebumps — CBBC on TwitterJanet Ellis — WikipediaSophie Ellis-Bextor — WikipediaTony Walsh's performance of 'This Is The Place' at the Manchester attack vigil — YouTubeA Scary Time by Lynzy Lab — YouTubeSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
October 10, 2018
With Carole in the wilds of Canada, and Graham knee-deep in a security conference in Glasgow, we drag an episode out from the archives of February 2017 - looking at the thorny subject of passwords. Join computer security veterans Graham Cluley, Carole Theriault, and Vanja Švajcer as they offer some advice and tips for computer users. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Vanja Švajcer.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
October 3, 2018
Millions of Facebook user accounts put at risk after hack! The UK Conservative party's conference app causes a privacy omnishambles! And Facebook (again) has been doing something naughty with the phone numbers you give it for security reasons! Oh, and Maria gets very excited about something to do with Star Trek. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice.Support Smashing SecurityLinks:Our Podcast Awards trophy acceptance video — Even though we didn't actually win, we still thought you might like to see it.Virus Bulletin conference, Montreal — Say "Hi" to Carole if you see her there.Everything that went wrong during Theresa May’s 2017 conference speech - YouTubeDie Hard on the One Show - Charlie Brooker's Weekly Wipe - YouTubeConservative Party conference app reveals MPs' numbers - BBC NewsThe Tories Say They Were "Let Down" By A Conference App Platform After It Allowed Access To The Personal Numbers Of Hundreds Of MPsConference apps are crap and (mostly) pointlessSecurity Update – Facebook NewsroomThe Facebook Security Meltdown Exposes Way More Sites Than FacebookInvestigating sources of PII used in Facebook’s targeted advertising (PDF) — Research from Northeastern University.Facebook Is Giving Advertisers Access to Your Shadow Contact InformationYou Gave Facebook Your Number For Security. They Used It For Ads — The EFF is not impressed.The The One Show Show on iTunesmanwhohasitall (@manwhohasitall) on TwitterTiburn Enterprise Star Trek PC at Lenovo Tech World 2018 - YouTubeLenovo Sets Computer to Stun, Unveils Star Trek Enterprise PCSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
September 26, 2018
Why was Zoho's website taken offline by its own domain registrar? How are dash cams making you less secure? And why are robocalls on the rise in the United States? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:Update on Zoho Services Disruption - Zoho BlogZoho CEO Sridhar Vembu asks for help on TwitterWhoa – oh no, Zoho: Domain name no-show deals CRM biz, 40m punters a crushing blowDomain registrar oversteps taking down Zoho domain, impacts over 30Mil usersBlackvue Dash-Cams Broadcasting Live Video and GPS of Your Car PUBLICLY by DEFAULT! - YouTubeTim Woodruff's tweet about BlackVue dash camsYes, It’s Bad. Robocalls, and Their Scams, Are SurgingYouMail - Robocall Index4.2 Billion Robocalls in August Set All-Time Record for YouMail Robocall IndexDoes Local Presence Dialing Really Work?National Do Not Call RegistryThe Robocall Nightmare Is Getting WorseUS Court Finds Anti-Robocall Rule Made Nearly Every Smartphone User a CriminalStop Unwanted Robocalls and Texts - FCCLeatherman Micra 10-in-1 Multi-ToolTechmoan - YouTubeThe Guild of Ambience - YouTube Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
September 19, 2018
Amazon staff are being bribed to delete negative reviews and leak data, deepfakes are getting more dangerous, an update on John McAfee's bitcoin bet, and our guest gets a shock... All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week (for a while at least) by David Bisson. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David Bisson.Sponsored By:Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice.Support Smashing SecurityLinks:'Pull your finger out' - the phrase's meaning and originAmazon Investigates Employees Leaking Data for Bribes - WSJAmazon staff said to be taking bribes to leak dataCrooked firms bribe customers with free gifts to leave fake reviewsSmashing Security 063: Carole's back! (where Maria Varmazis discusses deepfakes)Carnegie Mellon Researchers Develop New Deepfake MethodTransferring One Video Into the Style of Another - YouTubeThe Secret to Detecting Deep Fakes Is in the Eye BlinksReddit bans ‘deepfakes’ AI porn communitiesBitcoin Price Prediction TrackerSerious Eats: The Destination for DeliciousJoyofBaking.comHow to cook the perfect ... Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
September 12, 2018
Malicious script is being blamed for the British Airways hack, Trend Micro's apps are booted out of the Mac App Store for snaffling private data, and Paul Manafort's daughter wants Twitter to remove a link. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by David Emm of Kaspersky Lab. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David Emm.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:A Deceitful 'Doctor' in the Mac App StoreAlert: Adware Doctor stealing your files - YouTube videoApps that steal users' browser histories kicked out of the Mac App storeTrend Micro apologises after Mac apps found scooping up users' browser historyBritish Airways hacked - customer data and details of 380,000 card payments stolenThe British Airways Breach: How Magecart Claimed 380,000 VictimsBritish Airways hack: Infosec experts finger third-party scripts on payment pagesLaw firm launches £500 million group action over British Airways hackBritish Airways Fly The Flag We'll Take More Care Of You 1979 UK Advert - YouTubeHacked texts from family of former Trump campaign manager surface on the dark webManafort's Daughter's Lawyers Pressured Twitter to Delete Links to Hacked Text MessagesWikileaks Refused To Publish Manafort Family Texts, So Someone Else DidAirHelpHow Employing Autistic People Can Help Stop Cyber-AttacksMcFadden's Cold War (@Coldwar_Steve) on TwitterWhen Phil Mitchell met Trump: Coldwar Steve and his Brexit Britain mashupsNoel Edmonds - WikipediaSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
September 6, 2018
What's the danger when browser extensions go bad? Is Twitter sharing your online status a boon for stalkers? And which of the show's hosts is going to admit to cheating in their exams? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist David McClelland. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David McClelland.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:MEGA.nz Chrome extension caught stealing passwords, cryptocurrency private keysSecurity warnings for MEGA Chrome extension usersTwitter testing new feature that reveals when you're online... Who other than stalkers actually wants this?Giving social networking back to you - The Mastodon ProjectGraham Cluley on MastodonPhotomath - Camera calculatorTechnology Gives Students Innovative Tools for CheatingStudents’ cheating takes a high-tech turnMicrosoft Education: Take a Test - YouTubeRequired to install school malware on my personal computer - RedditThe Lord of the Rings (1978 film) - WikipediaRotoscoping - WikipediaTower – Official Trailer - YouTubeTower - NetflixCone - Live Color PickerThe dress - WikipediaA professor and his son-in-law came up with a brilliant invention to slash water use by 98% – Ikea is already a partnerAltered:CompanyAltered:Nozzle - YouTubeSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 29, 2018
How do fraudsters exploit abandoned domains to steal your company's secrets? How can you better protect your privacy when looking for love online? And who has the longest arms in the animal kingdom? All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who were joined briefly by a man in a wind tunnel for this episode. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:What do the drsolomon.com and sands.co.uk domains look like now?Hacking law firms with abandoned domain namesFraudsters Can Access Sensitive Information from Abandoned DomainsHave I Been Pwned: Domain searchJohn and Lorena BobbittHe Used Tinder to Hunt the Women He Raped and Killed, Police SayMissing Paperwork Got Him Out of Jail. Then, Police Say, He Raped and KilledMan jailed after attempting to rob man he met on dating appSearch for images with reverse image searchSwytch lets you use up to five 'burner' UK phone numbers from a single deviceSmashing Security 072: Why are firms so cr*p with our private data?A Hacker's Guide to Protecting Your Privacy While Dating How to Protect Your Privacy While Online DatingGibbons have the longest arms relative to body size of any primateBomb Chicken Teaser Trailer - YouTubeBomb Chicken for Nintendo SwitchFortnite fury over how Google handled its security holeThe Godless Spellchecker podcastSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 22, 2018
Is your used car still connected to its old owner? Just how did Apple manage to identify the teenager hacker who stole 90GB of the firm's files? And why on earth would a firm of lawyers start producing pornographic videos? You'll be surprised by the answers! All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Paul Ducklin.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Connected car data handover headache: There's no quick fix... and it's NOT just Land RoversShock Land Rover Discovery: Sellers could meddle with connected cars if not unboundThe hidden data danger of the ‘Connected’ carYour BMW or Merc may also be at risk of being hacked, because of your iOS appSamy, the MySpace worm written by Samy KamkarApple hacked by 16-year-old who “dreamed” of working for firmMelbourne teen hacked into Apple's secure computer network, court toldPrenda Law stories at TechdirtMinneapolis lawyer pleads guilty to federal fraud, money laundering charges in porn troll schemeCybercrime Investigations podcast with Geoff WhiteFlash Drives for FreedomFinal SpaceSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 15, 2018
Just how did sextortionists get (some) of the digits in your phone number? Why are some hackers saying they won't be going to DEF CON in Las Vegas anymore? And should Alex Jones from InfoWars be banned from Twitter? All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Maria Varmazis. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:The Podcast Awards - The People's ChoiceSex extortion emails now quoting part of their victim's phone numberNew Extortion Tricks: Now Including Your (Partial) Phone Number!In post-massacre Vegas, security policies clash with privacy valuesKatie Moussouris tweets about her Las Vegas hotel experienceVideo Shows Hotel Security at DEF CON Joking About Posting Photos of Guests' Belongings to SnapchatGoogle Spectre whizz kicked out of Caesars, blocked from DEF CON over hack 'attack' tweetOpen letter to the Hacker Community from DEF CON's Head of SecurityAlex Jones banned from YouTube, Facebook, and Apple, explainedFacebook, Apple, YouTube and Spotify ban Infowars' Alex JonesNow even YouPorn has banned Alex Jones, but he’s still on TwitterTwitter temporarily blocks Alex Jones from tweetingThe Twitter RulesGiving social networking back to you - The Mastodon ProjectCharlottesville: Why one man is suing Alex Jones for defamationShannon Coulter tweets about blocking Fortune 500 companies until Alex Jones is banned from Twitterlichess.org - Free Online ChessMagnus Carlsen playing as Dr Drunkenstein - YouTubeOctopath Traveler for Nintendo SwitchAlex Jones Rants as an Indie Folk Song - YouTubeSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 8, 2018
Fortnite players are told they'll have to disable a security setting on Android, the FCC finally admits that it wasn't hit by a DDoS attack, and Verizon's VPN smallprint raises privacy concerns. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by David Bisson. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: David Bisson.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:You'll have to disable a recommended Android security setting to install FortniteFortnite is putting users at risk, to prove a point about Google's Android monopolyIntroducing Android 9 PieSafe-WiFi Wireless Private Network - Verizon WirelessVerizon Didn’t Bother to Write a Privacy Policy for its ‘Privacy Protecting’ VPNTerms of Service for the Verizon Safe Wi Fi AppMcAfee Privacy NoticeVerizon customers can sue ad company over “zombie” cookies, judges rule Ajit Pai blames Obama administration over FCC DDoS attack that didn't happenInside the FCC's risky IT overhaulThe Triceratops Who Loved Me: A Primal Urges Extreme Fantasy - AmazonA Good Movie To WatchOvercooked! 2 for Nintendo SwitchChristopher Robin: Winnie the Pooh film denied release in ChinaSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
August 1, 2018
Ransomware rears its head again, Dixons Carphone reveals its data breach was almost 1000% worse than they previously thought, a man is accused of stealing five million dollars worth of cryptocurrency through hijacking mobile phones, and a Canadian guy called Norman is rushing to get the typewriters out of storage. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by journalist Geoff White. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Shipping company’s networks in the Americas crippled by ransomware attackYahoo addresses used by Cosco following ransomware attackBitPaymer Ransomware Infection Forces Alaskan Town to Use Typewriters for a WeekJim Hagemann Snabe, Maersk chairman, describing their recovery from the NotPetya ransomware - YouTubeDixons Carphone admits hack far bigger than originally thoughtDixons Carphone breach statement (June 2018)Dixons Carphone updated breach statement (July 2018)‘Tell your dad to give us Bitcoin’ How a Hacker Allegedly Stole Millions by Hijacking Phone NumbersSmashing Security 086: Elon Musk submarine scams and 2FA bypassSlow Burn: A Podcast About WatergateBill Clinton: "I did not have sexual relations with that woman" - YouTubeHow an Ex-Cop Rigged McDonald’s Monopoly Game and Stole MillionsLegion Season 2 Teaser Trailer - YouTubeLegion Season 2 - AmazonSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
July 25, 2018
Websites still using HTTP are marked as "not secure" by Chrome, 85,000 Google employees haven't been phished for a year, and if you're buying drugs via PayPal’s Venmo app you should say goodbye to privacy. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Scott Helme. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks.Special Guest: Scott Helme.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Vote for Smashing Security in the podcast awards!Smashing Security 039: Woah - are we talking to a cyborg?Google: Security Keys Neutralized Employee PhishingYubicoLess than 10% of Gmail users have enabled two-factor authenticationGoogle's Advanced Protection ProgramWhat is Google’s Advanced Protection Program? - YouTubeTwo-factor authentication versus two-step verificationOne small step for a browser, one giant leap for web security!Chrome browser flags Daily Mail and other sites as 'not secure'How to change Chrome's settings to be more in-your-face when you visit an unencrypted HTTP sitePublic by Default - Venmo Stories of 2017Why I Blasted Your “Drug” Deals on TwitterPayPal's Venmo App Exposes Most Transactions via Its APIReporting Trump's First Year: The Fourth Estate - BBCWhy No HTTPS? The World's Largest Websites Not Redirecting Insecure Requests to HTTPSScott Helme tweets about NewsNow's support for both HTTP and HTTPSNewsNow.co.ukSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
July 18, 2018
Regardless of whether Donald Trump believes Russia hacked the Democrats in the run-up to the US Presidential election or not, we explain how they did it. And Carole explores some of the creepier things being done in the name of surveillance. All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management. Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Vote for Smashing Security in the podcast awards!Scammers strike as Elon Musk retracts vile Twitter accusation against cave rescuerDonald Trump 'encourages Russia to hack Clinton emails' - YouTubeIndictment against 12 Russian hackersBears in the Midst: Intrusion into the Democratic National CommitteeThis is the email that hacked Hillary Clinton’s campaign chiefGuccifer 2.0’s schoolboy error reveals he’s hacking from MoscowAmazon Rekognition – Video and Image Amazon shareholders demand company stop selling facial recognition technology to governmentsMetropolitan Police's facial recognition technology 98% inaccurate, figures showLooking to Listen: Audio-Visual Speech SeparationCalifornia Shopping Centers Are Spying for an ICE ContractorCalifornia passes landmark privacy legislationWalmart's Newly Patented Technology For Eavesdropping On Workers Presents Privacy ConcernsFind a track - BBC MusicThe Staircase - NetflixSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
July 11, 2018
The world has been gripped with the story of that soccer team, those poor boys... but enough about England's World Cup hopes being dashed, it's time for another episode of "Smashing Security". Crypto scamming Thai cave rescue scoundrels! $25 million to make anti-fake news videos! TimeHop data breach! Phone number port out scams! All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by the author of "Social media is bullshit", B J Mendelson. Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes. Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening! Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: B J Mendelson.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps. But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users. Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Vote for "Smashing Security" in the Podcast AwardsThai Cave rescue scammers pose as Elon MuskWhy was Elon Musk at the Thai cave rescue?The full story of Thailand’s extraordinary cave rescueBad Checks: Twitter's Identity Crisis Is Costing Users More Than BitcoinYouTube Pledges $25 Million to Help Fight Fake NewsTimehop security incidentwhat3words | Addressing the worldJustified Season 1 Promo / trailer - YouTubeDear Joan and Jericha: agony aunts of the most ribald kindSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
Loading earlier episodes...
    15
    15
      0:00:00 / 0:00:00