Smashing Security
News and views from the world of cybersecurity, hacking, and internet threats
About the show
Join computer security industry veterans Graham Cluley and Carole Theriault as they have a light-hearted chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast...
Winner: "Best Security Podcast 2018."
Follow the podcast on Twitter at @SmashinSecurity. New episodes released every Thursday. Bonus "splinter" episodes when we feel like it...
Smashing Security on social media
Episode List
-
095: British Airways hack, Mac apps steal browser history, and one person has 285,000 texts leaked
September 13th, 2018 | 42 mins 21 secs
apple, british airways, browser, hacking, mac app store, malware, paul manafort, privacy, trend micro
Malicious script is being blamed for the British Airways hack, Trend Micro's apps are booted out of the Mac App Store for snaffling private data, and Paul Manafort's daughter wants Twitter to remove a link.
-
094: Rogue browser extensions, Twitter presence, and how to cheat in exams
September 6th, 2018 | 52 mins
browser, cheating, chrome, examinations, extension, google, mega, privacy, proctoru, twitter
What's the danger when browser extensions go bad? Is Twitter sharing your online status a boon for stalkers? And which of the show's hosts is going to admit to cheating in their exams?
-
093: Abandoned domains and dating app dangers
August 30th, 2018 | 37 mins 18 secs
bomb chicken, data breach, dating, domains, email, gibbons, godless spellchecker, privacy
How do fraudsters exploit abandoned domains to steal your company's secrets? How can you better protect your privacy when looking for love online? And who has the longest arms in the animal kingdom?
-
092: Hacky sack hack hack
August 23rd, 2018 | 51 mins 54 secs
apple, bmw, cars, copyright, land rover, porn
Is your used car still connected to its old owner? Just how did Apple manage to identify the teenager hacker who stole 90GB of the firm's files? And why on earth would a firm of lawyers start producing pornographic videos? You'll be surprised by the answers!
-
091: Sextortion, Las Vegas hotels, and Alex Jones
August 16th, 2018 | 48 mins 14 secs
alex jones, chess, def con, infowars, las vegas, octopath traveler, privacy, sextortion, twitter
Just how did sextortionists get (some) of the digits in your phone number? Why are some hackers saying they won't be going to DEF CON in Las Vegas anymore? And should Alex Jones from InfoWars be banned from Twitter?
-
090: Fortnite for Android, and the FCC's DDoS BS
August 9th, 2018 | 36 mins 47 secs
android, ddos, fcc, fortnite, google play, overcooked, verizon, vpn
Fortnite players are told they'll have to disable a security setting on Android, the FCC finally admits that it wasn't hit by a DDoS attack, and Verizon's VPN smallprint raises privacy concerns.
-
089: Data breaches, ransomware, Bitcoin robberies, and typewriters
August 2nd, 2018 | 44 mins 31 secs
bitcoin, cosco, cryptocurrency, data breach, dixons, legion, port out, ransomware, sim swap, slow burn
Ransomware rears its head again, Dixons Carphone reveals its data breach was almost 1000% worse than they previously thought, a man is accused of stealing five million dollars worth of cryptocurrency through hijacking mobile phones, and a Canadian guy called Norman is rushing to get the typewriters out of storage.
-
088: PayPal’s Venmo app even makes your drug purchases public
July 26th, 2018 | 42 mins 55 secs
drugs, google, google chrome, http, https, venmo
Websites still using HTTP are marked as "not secure" by Chrome, 85,000 Google employees haven't been phished for a year, and if you're buying drugs via PayPal’s Venmo app you should say goodbye to privacy.
-
087: How Russia hacked the US election
July 19th, 2018 | 44 mins 32 secs
amazon, donald trump, elon musk, facial recognition, google, hacking, ice, jeff bezos, privacy, russia, surveillance, vladimir putin, walmart
Regardless of whether Donald Trump believes Russia hacked the Democrats in the run-up to the US Presidential election or not, we explain how they did it. And Carole explores some of the creepier things being done in the name of surveillance.
-
086: Elon Musk submarine scams and 2FA bypass
July 12th, 2018 | 39 mins 5 secs
caves, data breach, elon musk, justified, rescue, thailand, timehop, what3words, youtube
Crypto scamming Thai cave scoundrels! $25 million to make anti-fake news videos! TimeHop data breach! Phone number port out scams!
-
085: Doctor Who, Facebook patents, and Bob's Burgers
July 5th, 2018 | 37 mins 10 secs
bob's burgers, data leak, dating, doctor who, facebook, jodie whittaker, privacy
Doctor Who's TARDIS has sprung a data leak, Facebook's creepy patents are unmasked, and an app to keep women safe on dates has surprising origins.
-
084: No! My voice is not my password
June 28th, 2018 | 33 mins 54 secs
biometrics, domestic abuse, hmrc, iot, privacy, smartphone, spying, voice prints
Who's been collecting the voice prints of millions of people saying "My voice is my password"? Why has it become tougher for law enforcement to scoop up cellphone data? And who's been turning up your central heating?
-
083: Fake email derails clarinetist's dream
June 21st, 2018 | 27 mins 32 secs
chromecast, clarinet, email, google, google home, password, privacy, this american life, vulnerability
Hell hath no fury like a jealous clarinetist's girlfriend! Your Google ChromeCast could be letting stalkers find out where you live! And why on earth is Graham recommending people write their passwords down in a book!?
-
082: World Cup cybersecurity, crypto crashes, and a bang of a password fail
June 14th, 2018 | 39 mins
bitcoin, coinrail, cryptocurrency, football, gun control, hiking, password, russia, tapas, tv5 monde, vpnfilter, world cup
Coinrail cryptocurrency exchange goes offline after hack, Russia appears to be 'live testing' cyber attacks, and Florida stopped running background checks on gun buyers because of forgotten password.
-
081: Hacker no-hopers, Wessex Water has a word, and we win an award
June 7th, 2018 | 25 mins 32 secs
awards, botnet, evil genius, internet of things, owari, simplenote, standard notes, wessex water
The mastermind behind the Owari botnet doesn't seem to have learnt anything from his victims, someone at Wessex Water forgets to remove an embarrassing sentence from a letter sent to customers, and we're officially the best security podcast!
-
080: Country bans Facebook, eavesdropping Alexa, and PornHub VPN
May 31st, 2018 | 34 mins 25 secs
alexa, amazon, brave, facebook, papua new guinea, pornhub, privacy, vpn
Papua New Guinea is planning a month-long nationwide ban of Facebook, PornHub wants to keep your online activities more private, and Amazon Alexa forwards a married couple's private conversation to a random contact.