Smashing Security

News and views from the world of cybersecurity, hacking, and internet threats

About the show

A helpful and hilarious take on the week's tech SNAFUs. Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast...

Winner of the "Best Security Podcast 2018" and "Best Security Podcast 2019", Smashing Security has had over eight million downloads. Past guests include Garry Kasparov, Mikko Hyppönen, and Rory Cellan-Jones.

Follow the podcast on Twitter at @SmashinSecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK).

Smashing Security on social media

Episodes

  • 265: The Nigerian supercop and Alexa vs. Alexa

    March 10th, 2022  |  54 mins 10 secs
    abba kyari, alexa, amazon, bec, drugs, echo, fraud, hushpuppi, nigeria, police, smart speaker, vulnerability

    The most famous policeman in Nigeria is in hot water over his links to Hushpuppi, has your Amazon Echo been talking to itself, and can an AI girlfriend save your marriage?

  •

    264: Hacked car chargers, Telegram sextortionists, and secret bossware

    March 3rd, 2022  |  47 mins 56 secs
    bossware, ev charging, hacking, horizon, post office, russia, sextortion, supply chain, telegram, ukraine

    Why might Russian EV chargers be displaying an anti-Putin message? Why are Telegram groups sharing sharing explicit images of women without their consent? And who is watching you in the workplace?

  •

    263: Problèmes de Weefeee, AI artists, and Web 3.0

    February 24th, 2022  |  1 hr 6 mins
    ai, art, france, nft, opensea, phishing, radio jammer, web 3.0, wi-fi

    Ooh la la! Horreur Wi-Fi en France! Some folks have experienced the drawbacks of Web 3.0 as their NFTs are stolen, and should computers own the copyright over the art they produce?

  •

    262: Macro progress, eyeball-tracking ads, and encryption backdoors

    February 17th, 2022  |  57 mins 59 secs
    concept, encryption, macro, malware, microsoft, microsoft word, moviepass, privacy

    How does Microsoft hope to defeat the macro terror? How is the UK Government trying to influence the public's opinion on end-to-end encryption? And what is MoviePass hoping to do with your eyeballs?

  •

    261: North Korea hacked, DEA cosplay, and Horizon Worlds drama

    February 10th, 2022  |  50 mins 42 secs
    dea, facebook, meta, metaverse, north korea, social engineering, vulnerability

    Who's wearing the pyjamas while they take down North Korea's internet? Is it a case of cop or cosplay in Oregon? And what's to fear about the metaverse?

  •

    260: New hire mystery, hacktivist ransomware, and digi-dating

    February 3rd, 2022  |  47 mins 40 secs
    belarus, dating, insider threat, ransomware, remote working, russia, ukraine

    Who's that new guy working at your company, and why don't you recognise him from the interview? How are hacktivists raising the heat in Belarus? And should you be fully vaxxed for your online date?

  •

    259: Techquilibrium and mediocre linguistic escapades

    January 27th, 2022  |  42 mins 48 secs
    addiction, brand new cherry flavor, dopamine, it's a knockout, mental health, smartphone, twitter, wordle

    Wordle - good or bad for the world? Whatever your opinion, at least someone wants to spoil players' fun. Meanwhile, we take a look at the threat mobile phones can pose to your mental health.

  •

    258: Tesla remote hijacks and revolting YouTubers

    January 20th, 2022  |  33 mins 4 secs
    david colombo, google, nft, tesla, vulnerability, vulnerability disclosure, youtube

    Carole's still on jury service, but the show must go on! We take a look at how some Tesla owners are at risk of having their expensive cars remotely hijacked, and why YouTubers are up in arms over NFTs.

  •

    257: Pokemon-hunting cops and the Spine Collector scammer

    January 13th, 2022  |  44 mins 16 secs
    books, jingles, pest control, pokemon, pokemon go, police, publishing, scam, spine collector, steven pinker, surveillance

    Who has been playing video games rather than hunting down criminals? How is a man alleged to have stolen manuscripts of unpublished books from celebrity authors? Which pot contains an elephant? And why has Graham been listening to podcasts about pest control marketing?

  •

    256: Virgin Media just won't take no for an answer, NFT apes, and bad optics

    December 16th, 2021  |  50 mins 9 secs
    facial recognition, log4j, log4shell, nft, opensea, spam, virgin media, vulnerability

    After a brief discussion of the Log4Shell vulnerability panic, we chat about how Virgin Media has got itself into hot water, a fat-fingered fumble at the Bored Ape Yacht Club, and how to hack around your sleeping girlfriend's facial recognition.

  •

    255: Revolting receipts, a Twitter fandango, and shopkeeper cyber tips

    December 9th, 2021  |  53 mins 27 secs
    antiwork, ecommerce, printer, privacy, small business, twitter, vulnerability

    "Demonically" possessed devices print out antiwork propaganda, advice on how to secure your store, and is Twitter's new photo privacy policy practical?

  •

    254: A dead hamster, a brass pen, and The Beatles

    December 2nd, 2021  |  37 mins 53 secs
    charity, cryptocurrency, get back, hamster, mr goxx, peter jackson, quadriga, the beatles

    Cryptocurrency traders suffer a hamster-related loss, beware of charity scammers this holiday season, and do you have the patience to sit through Peter Jackson's eight-hour Beatles documentary?

  •

    253: Cybercrime unicorns, HVAC hacks, and NFT piracy - with Mikko Hyppönen

    November 25th, 2021  |  48 mins 5 secs
    cybercrime, hacking, hvac, nft, password, piracy, vulnerability, wireless

    Heating systems are left vulnerable to attack in the high courts, cybercrime unicorns have become a reality (but what are they?), over 15 Terabytes of NFTs are made available for anyone to download ... and Carole reveals her Pick of the Year.

  •

    252: Hotel hacks, workplace spies, and the FBI

    November 18th, 2021  |  1 hr 1 min
    booking.com, data breach, email, fbi, hotel, middle east, privacy, spyware, surveillance, vinny troia, vulnerability

    Booking.com got hacked five years ago, and didn't tell its customers... but now we know who might have been behind it. Bossware rears its ugly head again in the workplace, spying on employees. And did you receive a warning email from the FBI?

  •

    251: PrawnHub, Tesla recall, and IoT luggage

    November 11th, 2021  |  41 mins 59 secs
    angling, dns, iot, pornhub, privacy, tesla, twitter, vulnerabilities

    Fishing fanatics find themselves in deep water, Teslas go haywire after an update, and is there actually some good news about IoT?

  •

    250: Yes, you heard that correctly. Two hundred and fifty

    November 4th, 2021  |  1 hr 1 min
    2fa, cryptocurrency, job hunting, paypal, sms, social engineering, squid game

    A game about Squid Game pulls the rug from under cryptocurrency investors in what appears to be a scam, PayPal hackers use a devious trick to break into 2FA-protected accounts, and have you received a job offer that's too good to be true?