Smashing Security

News and views from the world of cybersecurity, hacking, and internet threats

About the show

A helpful and hilarious take on the week's tech SNAFUs. Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast...

Winner of the "Best Security Podcast" in 2018 and 2019, and the "Most Entertaining" in 2022, Smashing Security has had over eight million downloads. Past guests include Garry Kasparov, Mikko Hyppönen, and Rory Cellan-Jones.

Follow the podcast on Twitter at @SmashinSecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK).

Smashing Security on social media


  • 286: Hackers doxxed, Pornhub probs, and Co-op security measures

    August 4th, 2022  |  53 mins 26 secs
    cctv, co-op, doxxing, hacking, pornhub, privacy, visa

    Pornhub has a problem, the UK's Co-op supermarket is accused of big brother tactics, and we take a look at how a security researcher is revealing the true identify of hackers.

  • 285: Uber's hidden hack, tips for travel, and AI accent fixes

    July 28th, 2022  |  1 hr 8 mins
    accent, artificial intelligence, data breach, privacy, travel, uber, vulnerability

    Uber may not face prosecution over its handling of a 2016 data breach - but its former chief security head does; how to defend your digital devices' data while on vacation, and how to change your accent with artificial intelligence.

  • 284: The Most Wanted Missing CryptoQueen

    July 21st, 2022  |  42 mins 43 secs
    cryptocurrency, dr ruja ignatova, onecoin, the missing cryptoqueen

    Jamie Bartlett updates us on the hunt for the Missing CryptoQueen, who now ranks amongst the FBI's most wanted fugitives!

  • 283: Disney's social dumpster fire, Anom phones, and TikTok tragedies

    July 14th, 2022  |  54 mins 47 secs
    an0m, anom, disney, disneyland, facebook, fbi, instagram, privacy, tiktok

    A self-proclaimed "super hacker" causes problems in the Magic Kingdom, criminals regret trusting Anom phones, and lawsuits are filed against TikTok.

  • 282: Raising money through ransomware, China's mega-leak, and hackers for hire

    July 7th, 2022  |  45 mins 17 secs
    bitcoin, china, cryptocurrency, data breach, hacking, malware, ransomware

    A hacked university might have made a profit after paying a cryptocurrency ransom, China suffers possibly the biggest data breach in history, and Reuters investigates digital mercenaries.

  • 281: Debug ransomware and win $1,000,000, period-tracking apps, and AI gets emotional

    June 30th, 2022  |  59 mins 47 secs
    abortion, ai, bug bounty, facial recognition, lockbit, period tracker, privacy, ransomware

    A new version of the LockBit ransomware offers a bug bounty, women uninstall period-tracking apps in fear of how their data might be used against them, and Microsoft's facial recognition tech no longer wants to know how you're feeling.

  • 280: Hot tub hijinx, and a sentient AI

    June 23rd, 2022  |  40 mins 19 secs
    ai, data breach, google, hot tub, hot tub time machine, iot, jacuzzi, lamda, privacy, van gogh, vulnerability

    Internet-connected jacuzzis find themselves in hot water, and a Google engineer claims that their AI has developed feelings.

  • 279: Encrypted notes, and a deadly case of AirTag spying

    June 16th, 2022  |  36 mins 50 secs
    airtag, apple, blockchain, cryptocurrency, encryption, kgb, relationships, soviet union, surveillance

    How did a saxophonist sneak sensitive information in and out of the Soviet Union? How might an Apple AirTag have led to murder? And isn't the world of cryptocurrency and blockchain doing just great?

  • 278: Tim Hortons, avoiding sanctions, and good faith security research

    June 9th, 2022  |  40 mins 25 secs
    hacking, lockbit, mandiant, privacy, ransomware, revil, sanctions, tim hortons, tracking, white hat

    Trouble brews with the Tim Hortons app, Mandiant gets in a tussle with a Russian ransomware gang, and should good faith security researchers be at risk of prosecution?

  • 277: Bad bots, cheeky ransoms, and good deepfakes

    June 2nd, 2022  |  51 mins 10 secs
    bots, charity, deepfakes, google, ransomware

    Ransom acts of kindness are top of our mind, as we also explore how bad bots are hogging more and more of the internet's activity, and look at how deepfakes could be a good thing after all.

  • 276: Webcam extortion, Michael Fish, and food foul-ups

    May 26th, 2022  |  54 mins 30 secs
    browser, food, hacking, michael fish, nude photos, privacy, screencastify, sextortion, supply chain, vulnerability, webcam

    A browser extension bug let malicious websites spy on webcams, hackers threaten the global food supply chain, and Michael Fish (not that one...) hacked into his female classmates' online accounts, hunting for nude photos and videos.

  • 275: Jail for Bing, and mental health apps may not be good for you

    May 19th, 2022  |  1 hr 5 mins
    hacking, malware, mental health, privacy, ransomware, telegram, vulnerability

    A man hacks his employer to prove its security sucks, Telegram provides a helping hand to the Eternity Project malware, and what the heck do mental health apps think they're up to?

  • 274: Hands off my biometrics, and a wormhole squirmish

    May 12th, 2022  |  49 mins 10 secs
    biometrics, carl sagan, clearview ai, cryptocurrency, domain, facial recognition, wormhole

    Clearview AI receives something of a slap in the face, and who is wrestling over an internet wormhole?

  • 273: Password blips, and who's calling the airport?

    May 5th, 2022  |  50 mins 11 secs
    denial of service, dublin airport, noise, passwords, sms, telephone

    We find out why calls to Dublin airport's noise complaints line have soared, and Carole quizzes Graham to celebrate World Password Day.

  • 272: Going ape over the Kardashians, and the face of romance scams

    April 28th, 2022  |  50 mins 23 secs
    bored ape yacht club, cryptocurrency, instagram, kardashians, kim kardashian, online dating, roblox, scam, wallet

    Members of The Bored Ape Yacht Club get that sinking feeling, a face unwittingly launches hundreds of romance scams, and is an as-yet unseen Kim Kardashian sex tape a load of old Roblox?

  • 271: Crypto break-in, Google blurring, and mics not muting

    April 21st, 2022  |  50 mins 46 secs
    apple, cryptocurrency, google, icloud, metamask, microphone, privacy, russia, social engineering, ukraine, zoom

    A man loses $650,000 from his cryptocurrency wallet after his Apple iCloud account is hacked, video conferencing apps may not be muting your mic quite the way you imagined, and Google has unblurred military bases in Russia... or has it?