Graham Cluley
Co-Host of Smashing Security
Graham Cluley is an award-winning security blogger, researcher and public speaker. He has been a well-known figure in the computer security industry since the early 1990s when he worked as a programmer, writing the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows.
Graham has given talks about computer security for some of the world's largest companies, worked with law enforcement agencies on investigations into hacking groups, and regularly appears on TV and radio explaining computer security threats.
Graham was inducted into the InfoSecurity Europe Hall of Fame in 2011, and his claim to fame is that he is the originator of the saying that "the cloud is just someone else’s computer” (but he hasn't managed to make any money out of it)
Graham Cluley has hosted 282 Episodes.
-
281: Debug ransomware and win $1,000,000, period-tracking apps, and AI gets emotional
June 30th, 2022 | 59 mins 47 secs
abortion, ai, bug bounty, facial recognition, lockbit, period tracker, privacy, ransomware
A new version of the LockBit ransomware offers a bug bounty, women uninstall period-tracking apps in fear of how their data might be used against them, and Microsoft's facial recognition tech no longer wants to know how you're feeling.
-
280: Hot tub hijinx, and a sentient AI
June 23rd, 2022 | 40 mins 19 secs
ai, data breach, google, hot tub, hot tub time machine, iot, jacuzzi, lamda, privacy, van gogh, vulnerability
Internet-connected jacuzzis find themselves in hot water, and a Google engineer claims that their AI has developed feelings.
-
279: Encrypted notes, and a deadly case of AirTag spying
June 16th, 2022 | 36 mins 50 secs
airtag, apple, blockchain, cryptocurrency, encryption, kgb, relationships, soviet union, surveillance
How did a saxophonist sneak sensitive information in and out of the Soviet Union? How might an Apple AirTag have led to murder? And isn't the world of cryptocurrency and blockchain doing just great?
-
278: Tim Hortons, avoiding sanctions, and good faith security research
June 9th, 2022 | 40 mins 25 secs
hacking, lockbit, mandiant, privacy, ransomware, revil, sanctions, tim hortons, tracking, white hat
Trouble brews with the Tim Hortons app, Mandiant gets in a tussle with a Russian ransomware gang, and should good faith security researchers be at risk of prosecution?
-
277: Bad bots, cheeky ransoms, and good deepfakes
June 2nd, 2022 | 51 mins 10 secs
bots, charity, deepfakes, google, ransomware
Ransom acts of kindness are top of our mind, as we also explore how bad bots are hogging more and more of the internet's activity, and look at how deepfakes could be a good thing after all.
-
276: Webcam extortion, Michael Fish, and food foul-ups
May 26th, 2022 | 54 mins 30 secs
browser, food, hacking, michael fish, nude photos, privacy, screencastify, sextortion, supply chain, vulnerability, webcam
A browser extension bug let malicious websites spy on webcams, hackers threaten the global food supply chain, and Michael Fish (not that one...) hacked into his female classmates' online accounts, hunting for nude photos and videos.
-
275: Jail for Bing, and mental health apps may not be good for you
May 19th, 2022 | 1 hr 5 mins
hacking, malware, mental health, privacy, ransomware, telegram, vulnerability
A man hacks his employer to prove its security sucks, Telegram provides a helping hand to the Eternity Project malware, and what the heck do mental health apps think they're up to?
-
274: Hands off my biometrics, and a wormhole squirmish
May 12th, 2022 | 49 mins 10 secs
biometrics, carl sagan, clearview ai, cryptocurrency, domain, facial recognition, wormhole
Clearview AI receives something of a slap in the face, and who is wrestling over an internet wormhole?
-
273: Password blips, and who's calling the airport?
May 5th, 2022 | 50 mins 11 secs
denial of service, dublin airport, noise, passwords, sms, telephone
We find out why calls to Dublin airport's noise complaints line have soared, and Carole quizzes Graham to celebrate World Password Day.
-
272: Going ape over the Kardashians, and the face of romance scams
April 28th, 2022 | 50 mins 23 secs
bored ape yacht club, cryptocurrency, instagram, kardashians, kim kardashian, online dating, roblox, scam, wallet
Members of The Bored Ape Yacht Club get that sinking feeling, a face unwittingly launches hundreds of romance scams, and is an as-yet unseen Kim Kardashian sex tape a load of old Roblox?
-
271: Crypto break-in, Google blurring, and mics not muting
April 21st, 2022 | 50 mins 46 secs
apple, cryptocurrency, google, icloud, metamask, microphone, privacy, russia, social engineering, ukraine, zoom
A man loses $650,000 from his cryptocurrency wallet after his Apple iCloud account is hacked, video conferencing apps may not be muting your mic quite the way you imagined, and Google has unblurred military bases in Russia... or has it?
-
270: Bearded Barbie, EDR scams, and hobbyist crime detectives
April 14th, 2022 | 51 mins 1 sec
barbie, catfishing, data breach, dna, edr, facebook, hamas, israel, malware, police
Pulchritudinous women with glossy long hair are targeting Israeli officials via Facebook - but why? Scammers have found a new way to gain access to your most sensitive information - but how? And armchair detectives are helping investigating cold cases involving DNA - but should they?
-
269: Trezor Deep Throat, a CCTV stalker, and Amazon's list of banned words
April 7th, 2022 | 50 mins 9 secs
amazon, cctv, cryptocurrency, data breach, hardware wallet, mailchimp, malware, phishing, stalking, trezor
There's monkey business involving cryptocurrency thieves and MailChimp, a stalker exploits his ex-partner's CCTV cameras, and what are the naughty words Amazon doesn't want its staff using?
-
268: LinkedIn deepfakes, doxxing Russian spies, and a false alarm
March 31st, 2022 | 48 mins 38 secs
ai, autocorrect, deepfake, doxxing, espionage, linkedin, ringcentral, russia, ukraine
Strange goings-on on LinkedIn, Ukraine publishes a list of alleged Russian FSB agents, and police in Pittsburgh investigate an odd report of an active shooter.
-
267: Virtual kidnapping, two helipads, and a naughty Apple employee
March 24th, 2022 | 53 mins 50 secs
apple, banking, bitcoin, cryptocurrency, fraud, kidnapping, malware, npm, open source, protestware, russia, supply chain, ukraine
A Russian bank tells its customers to stop installing security updates, an Apple employee ends up in hot water, and learn our tips to avoid being virtually kidnapped.
-
266: Cyberflashing, Kaspersky, and secret spies
March 17th, 2022 | 58 mins 21 secs
airdrop, airtag, apple, bluetooth, bsi, cyberflashing, dick pics, eugene kaspersky, germany, kaspersky, osint, russia, ukraine
Germany tells consumers to stop using Kaspersky anti-virus products, OSINT reveals a secret government department (with help from an Apple AirTag), and the UK says it's taking a hard line on cyberflashing.