Smashing Security

News and views from the world of cybersecurity, hacking, and internet threats

About the show

A helpful and hilarious take on the week's tech SNAFUs. Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast...

Winner of the "Best Security Podcast" in 2018 and 2019, and the "Most Entertaining" in 2022, Smashing Security has had over eight million downloads. Past guests include Garry Kasparov, Mikko Hyppönen, and Rory Cellan-Jones.

Follow the podcast on Twitter at @SmashinSecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK).

Smashing Security on social media


  • 030: GDPR - The good and the bad

    June 22nd, 2017  |  26 mins 43 secs

    What is GDPR, and what does it mean to your business? Carole Theriault and Graham Cluley are joined by special guest Kevin Gorsline to discuss.

  • 029: Exploits to get your English teeth into

    June 15th, 2017  |  38 mins 8 secs
    mac, malware, microsoft, mouse, patch tuesday, vulnerability

    Microsoft gives us a Patch Tuesday shock, malware grows up for the Mac, and your mouse movements might reveal if you're an identity thief.

  • 024: Reality Winner, Gordon Ramsay and a leaky bucket

    June 8th, 2017  |  38 mins 8 secs
    amazon, aws, cloud, gordon ramsay, nsa, reality winner

    Evidence of Russia hacking the US election leaks from the NSA and Reality is not a winner, confidential data is accidentally exposed in the cloud by a defence contractor, and Gordon Ramsay has a few choice words for his hacking father-in-law.

  • 023: Covfefe

    May 31st, 2017  |  40 mins 27 secs
    blackmail, british airways, donald trump, facebook, germany, twitter

    Hackers are blackmailing cosmetic surgery patients, and threatening to release their naked photos. A British Airways IT snafu causes travel chaos for thousands. And Germany is threatening to throw hefty fines at Facebook if it can't police its content...

  • 022: Walk this way... to defeat biometrics

    May 25th, 2017  |  31 mins 47 secs
    biometrics, mac, malware, samsung

    The Samsung Galaxy S8 claims that its iris recognition technology provides "airtight security", but the Chaos Computer Club knows better and shows how it can be easily bypassed. Australian researchers create a wearable gizmo that authenticates you...

  • 021: WannaCry - Who's to blame?

    May 18th, 2017  |  35 mins 15 secs
    hp, malware, ransomware, vulnerability, wannacry

    The WannaCry ransomware has struck! But before we tackle that subject, and who we should blame for one of the highest profile malware attacks for years, we discuss how HP has been unwittingly capturing the keystrokes of its laptop users. Then we...

  • 020: Phishing for Donald Trump

    May 11th, 2017  |  30 mins 45 secs
    donald trump, handbrake, mac, malware, phishing

    Gizmodo's attempt to reveal Donald Trump's administration ineptitude when it comes to cybersecurity fails to impress. Mac users are warned that the HandBrake DVD-ripping app has been compromised by malware.  And will the US Army insist IT security professionals spend months ironing their bedsheets..?

  • 019: The Love Bug virus

    May 4th, 2017  |  29 mins 20 secs
    love bug, malware

    On May 4th 2000, the Love Bug virus (also known as ILOVEYOU or LoveLetter) rapidly spread around the world, clogging up email systems. Computer security veterans Graham Cluley and Carole Theriault are joined this week by special guest John Hawes...

  • 018: Windows is a virus. True or False?

    April 27th, 2017  |  30 mins 42 secs

    Security firm Webroot drops a clanger when it declared Windows was malicious and borked customers' PCs, millennials are streaming a lot of movies illegally, and blackmailers are targeting members of the Ashley Madison cheating site again. All this and...

  • 017: Data breaches, zero day exploits, and toenail clippings

    April 20th, 2017  |  30 mins 37 secs
    burger king, data breach, google home, malware, microsoft, vulnerability, zero-day

    Hotel malware has been stealing guests' payment card details... again, should businesses relay delay rolling out vulnerability patches, and Burger King's Whopper TV ad campaign tries to take advantage of viewers' Google Home devices with predictable...

  • 016: Wonga wronga!

    April 13th, 2017  |  27 mins 15 secs
    data breach, diabetic, malware, spyware, wonga

    Spyware companies are filmed plotting to break global sanctions to ship surveillance and spying equipment to dodgy authoritarian regimes, an unsecured database exposed diabetics’ sensitive data, and a massive data breach leaves hundreds of...

  • 015: Bad vibrations

    April 6th, 2017  |  26 mins 54 secs
    android, epicenter, nfc, samsung, sex toy

    Don't let an internet-enabled sex toy make your most private moments oh-so-public. Samsung's wannabe-Android-killer is found lacking.  And did you hear about the firm that is micro-chipping its employees?  All this and more is discussed by...

  • 014: Protecting webmail - a Smashing Security splinter

    March 30th, 2017  |  30 mins 33 secs
    2fa, fappening, passwords, phishing

    What can you do to better protect your online email accounts? In this special "splinter" episode (or should it be a "shard"?) regular hosts Graham Cluley and Carole Theriault discuss with Paul Ducklin tips on how to defend your...

  • 013: Assault with a deadly tweet

    March 23rd, 2017  |  33 mins 58 secs
    animated gif, social engineering, twitter

    Graham is embarrassed by a Twitter security snafu. How an animated GIF could prove deadly. Social engineering threats against your workforce. And will you be able to do any work on your laptop next time you catch an airplane?  All this and more...

  • 012: Eau de Eugene Kaspersky

    March 16th, 2017  |  28 mins 43 secs
    android, eugene kaspersky, malware, wikileaks

    Androids pre-installed with malware - can the supply chain be trusted? Will WikiLeaks help vendors get zero-days fixed? And what on earth has the Kaspersky marketing department dreamt up this time? Graham Cluley, Carole Theriault and special guest...

  • 011: WikiLeaks and the CIA

    March 9th, 2017  |  33 mins 45 secs
    border control, cia, ransomware, signal, telegram, whatsapp, wikileaks

    Has the CIA been using a Weeping Angel to spy on you via your Smart TV? Have WhatsApp, Telegram and Signal been compromised? What is the secret of the SATAN ransomware? And can you avoid having your data searched as you pass through border...