About the show
A helpful and hilarious take on the week's tech SNAFUs. Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast...
Winner of the "Best Security Podcast" in 2018 and 2019, and the "Most Entertaining" in 2022, Smashing Security has had over eight million downloads. Past guests include Garry Kasparov, Mikko Hyppönen, and Rory Cellan-Jones.
Follow the podcast on Twitter at @SmashinSecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK).
Smashing Security on social media
Episodes
-
270: Bearded Barbie, EDR scams, and hobbyist crime detectives
April 14th, 2022 | 51 mins 1 sec
barbie, catfishing, data breach, dna, edr, facebook, hamas, israel, malware, police
Pulchritudinous women with glossy long hair are targeting Israeli officials via Facebook - but why? Scammers have found a new way to gain access to your most sensitive information - but how? And armchair detectives are helping investigating cold cases involving DNA - but should they?
-
269: Trezor Deep Throat, a CCTV stalker, and Amazon's list of banned words
April 7th, 2022 | 50 mins 9 secs
amazon, cctv, cryptocurrency, data breach, hardware wallet, mailchimp, malware, phishing, stalking, trezor
There's monkey business involving cryptocurrency thieves and MailChimp, a stalker exploits his ex-partner's CCTV cameras, and what are the naughty words Amazon doesn't want its staff using?
-
268: LinkedIn deepfakes, doxxing Russian spies, and a false alarm
March 31st, 2022 | 48 mins 38 secs
ai, autocorrect, deepfake, doxxing, espionage, linkedin, ringcentral, russia, ukraine
Strange goings-on on LinkedIn, Ukraine publishes a list of alleged Russian FSB agents, and police in Pittsburgh investigate an odd report of an active shooter.
-
267: Virtual kidnapping, two helipads, and a naughty Apple employee
March 24th, 2022 | 53 mins 50 secs
apple, banking, bitcoin, cryptocurrency, fraud, kidnapping, malware, npm, open source, protestware, russia, supply chain, ukraine
A Russian bank tells its customers to stop installing security updates, an Apple employee ends up in hot water, and learn our tips to avoid being virtually kidnapped.
-
266: Cyberflashing, Kaspersky, and secret spies
March 17th, 2022 | 58 mins 21 secs
airdrop, airtag, apple, bluetooth, bsi, cyberflashing, dick pics, eugene kaspersky, germany, kaspersky, osint, russia, ukraine
Germany tells consumers to stop using Kaspersky anti-virus products, OSINT reveals a secret government department (with help from an Apple AirTag), and the UK says it's taking a hard line on cyberflashing.
-
265: The Nigerian supercop and Alexa vs. Alexa
March 10th, 2022 | 54 mins 10 secs
abba kyari, alexa, amazon, bec, drugs, echo, fraud, hushpuppi, nigeria, police, smart speaker, vulnerability
The most famous policeman in Nigeria is in hot water over his links to Hushpuppi, has your Amazon Echo been talking to itself, and can an AI girlfriend save your marriage?
-
264: Hacked car chargers, Telegram sextortionists, and secret bossware
March 3rd, 2022 | 47 mins 56 secs
bossware, ev charging, hacking, horizon, post office, russia, sextortion, supply chain, telegram, ukraine
Why might Russian EV chargers be displaying an anti-Putin message? Why are Telegram groups sharing sharing explicit images of women without their consent? And who is watching you in the workplace?
-
263: Problèmes de Weefeee, AI artists, and Web 3.0
February 24th, 2022 | 1 hr 6 mins
ai, art, france, nft, opensea, phishing, radio jammer, web 3.0, wi-fi
Ooh la la! Horreur Wi-Fi en France! Some folks have experienced the drawbacks of Web 3.0 as their NFTs are stolen, and should computers own the copyright over the art they produce?
-
262: Macro progress, eyeball-tracking ads, and encryption backdoors
February 17th, 2022 | 57 mins 59 secs
concept, encryption, macro, malware, microsoft, microsoft word, moviepass, privacy
How does Microsoft hope to defeat the macro terror? How is the UK Government trying to influence the public's opinion on end-to-end encryption? And what is MoviePass hoping to do with your eyeballs?
-
261: North Korea hacked, DEA cosplay, and Horizon Worlds drama
February 10th, 2022 | 50 mins 42 secs
dea, facebook, meta, metaverse, north korea, social engineering, vulnerability
Who's wearing the pyjamas while they take down North Korea's internet? Is it a case of cop or cosplay in Oregon? And what's to fear about the metaverse?
-
260: New hire mystery, hacktivist ransomware, and digi-dating
February 3rd, 2022 | 47 mins 40 secs
belarus, dating, insider threat, ransomware, remote working, russia, ukraine
Who's that new guy working at your company, and why don't you recognise him from the interview? How are hacktivists raising the heat in Belarus? And should you be fully vaxxed for your online date?
-
259: Techquilibrium and mediocre linguistic escapades
January 27th, 2022 | 42 mins 48 secs
addiction, brand new cherry flavor, dopamine, it's a knockout, mental health, smartphone, twitter, wordle
Wordle - good or bad for the world? Whatever your opinion, at least someone wants to spoil players' fun. Meanwhile, we take a look at the threat mobile phones can pose to your mental health.
-
258: Tesla remote hijacks and revolting YouTubers
January 20th, 2022 | 33 mins 4 secs
david colombo, google, nft, tesla, vulnerability, vulnerability disclosure, youtube
Carole's still on jury service, but the show must go on! We take a look at how some Tesla owners are at risk of having their expensive cars remotely hijacked, and why YouTubers are up in arms over NFTs.
-
257: Pokemon-hunting cops and the Spine Collector scammer
January 13th, 2022 | 44 mins 16 secs
books, jingles, pest control, pokemon, pokemon go, police, publishing, scam, spine collector, steven pinker, surveillance
Who has been playing video games rather than hunting down criminals? How is a man alleged to have stolen manuscripts of unpublished books from celebrity authors? Which pot contains an elephant? And why has Graham been listening to podcasts about pest control marketing?
-
256: Virgin Media just won't take no for an answer, NFT apes, and bad optics
December 16th, 2021 | 50 mins 9 secs
facial recognition, log4j, log4shell, nft, opensea, spam, virgin media, vulnerability
After a brief discussion of the Log4Shell vulnerability panic, we chat about how Virgin Media has got itself into hot water, a fat-fingered fumble at the Bored Ape Yacht Club, and how to hack around your sleeping girlfriend's facial recognition.
-
255: Revolting receipts, a Twitter fandango, and shopkeeper cyber tips
December 9th, 2021 | 53 mins 27 secs
antiwork, ecommerce, printer, privacy, small business, twitter, vulnerability
"Demonically" possessed devices print out antiwork propaganda, advice on how to secure your store, and is Twitter's new photo privacy policy practical?