Smashing Security

News and views from the world of cybersecurity, hacking, and internet threats

About the show

A helpful and hilarious take on the week's tech SNAFUs. Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast...

Winner: "Best Security Podcast 2018" and "Best Security Podcast 2019."

Follow the podcast on Twitter at @SmashinSecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK).

Smashing Security on social media

Episodes

  • 098: A Facebook omnishambles

    October 4th, 2018  |  51 mins 28 secs
    2fa, conference, conservative, facebook, hack, star trek, the one show, vulnerability

    Millions of Facebook user accounts put at risk after hack! The UK Conservative party's conference app causes a privacy omnishambles! And Facebook (again) has been doing something naughty with the phone numbers you give it for security reasons! Oh, and Maria gets very excited about something to do with Star Trek.

  • 097: Dash cam surveillance, robocall plague, and Zoho woe

    September 27th, 2018  |  44 mins 14 secs
    dash cam, domain, iot, phishing, privacy, robocall, vulnerability, zoho

    Why was Zoho's website taken offline by its own domain registrar? How are dash cams making you less secure? And why are robocalls on the rise in the United States?

  • 096: Bribing Amazon staff, and blinking deepfakes

    September 20th, 2018  |  33 mins 50 secs
    amazon, bitcoin, data breach, deepfakes, john mcafee

    Amazon staff are being bribed to delete negative reviews and leak data, deepfakes are getting more dangerous, an update on John McAfee's bitcoin bet, and our guest gets a shock...

  • 095: British Airways hack, Mac apps steal browser history, and one person has 285,000 texts leaked

    September 13th, 2018  |  42 mins 21 secs
    apple, british airways, browser, hacking, mac app store, malware, paul manafort, privacy, trend micro

    Malicious script is being blamed for the British Airways hack, Trend Micro's apps are booted out of the Mac App Store for snaffling private data, and Paul Manafort's daughter wants Twitter to remove a link.

  • 094: Rogue browser extensions, Twitter presence, and how to cheat in exams

    September 6th, 2018  |  52 mins
    browser, cheating, chrome, examinations, extension, google, mega, privacy, proctoru, twitter

    What's the danger when browser extensions go bad? Is Twitter sharing your online status a boon for stalkers? And which of the show's hosts is going to admit to cheating in their exams?

  • 093: Abandoned domains and dating app dangers

    August 30th, 2018  |  37 mins 18 secs
    bomb chicken, data breach, dating, domains, email, gibbons, godless spellchecker, privacy

    How do fraudsters exploit abandoned domains to steal your company's secrets? How can you better protect your privacy when looking for love online? And who has the longest arms in the animal kingdom?

  • 092: Hacky sack hack hack

    August 23rd, 2018  |  51 mins 54 secs
    apple, bmw, cars, copyright, land rover, porn

    Is your used car still connected to its old owner? Just how did Apple manage to identify the teenager hacker who stole 90GB of the firm's files? And why on earth would a firm of lawyers start producing pornographic videos? You'll be surprised by the answers!

  • 091: Sextortion, Las Vegas hotels, and Alex Jones

    August 16th, 2018  |  48 mins 14 secs
    alex jones, chess, def con, infowars, las vegas, octopath traveler, privacy, sextortion, twitter

    Just how did sextortionists get (some) of the digits in your phone number? Why are some hackers saying they won't be going to DEF CON in Las Vegas anymore? And should Alex Jones from InfoWars be banned from Twitter?

  • 090: Fortnite for Android, and the FCC's DDoS BS

    August 9th, 2018  |  36 mins 47 secs
    android, ddos, fcc, fortnite, google play, overcooked, verizon, vpn

    Fortnite players are told they'll have to disable a security setting on Android, the FCC finally admits that it wasn't hit by a DDoS attack, and Verizon's VPN smallprint raises privacy concerns.

  • 089: Data breaches, ransomware, Bitcoin robberies, and typewriters

    August 2nd, 2018  |  44 mins 31 secs
    bitcoin, cosco, cryptocurrency, data breach, dixons, legion, port out, ransomware, sim swap, slow burn

    Ransomware rears its head again, Dixons Carphone reveals its data breach was almost 1000% worse than they previously thought, a man is accused of stealing five million dollars worth of cryptocurrency through hijacking mobile phones, and a Canadian guy called Norman is rushing to get the typewriters out of storage.

  • 088: PayPal’s Venmo app even makes your drug purchases public

    July 26th, 2018  |  42 mins 55 secs
    drugs, google, google chrome, http, https, venmo

    Websites still using HTTP are marked as "not secure" by Chrome, 85,000 Google employees haven't been phished for a year, and if you're buying drugs via PayPal’s Venmo app you should say goodbye to privacy.

  • 087: How Russia hacked the US election

    July 19th, 2018  |  44 mins 32 secs
    amazon, donald trump, elon musk, facial recognition, google, hacking, ice, jeff bezos, privacy, russia, surveillance, vladimir putin, walmart

    Regardless of whether Donald Trump believes Russia hacked the Democrats in the run-up to the US Presidential election or not, we explain how they did it. And Carole explores some of the creepier things being done in the name of surveillance.

  • 086: Elon Musk submarine scams and 2FA bypass

    July 12th, 2018  |  39 mins 5 secs
    caves, data breach, elon musk, justified, rescue, thailand, timehop, what3words, youtube

    Crypto scamming Thai cave scoundrels! $25 million to make anti-fake news videos! TimeHop data breach! Phone number port out scams!

  • 085: Doctor Who, Facebook patents, and Bob's Burgers

    July 5th, 2018  |  37 mins 10 secs
    bob's burgers, data leak, dating, doctor who, facebook, jodie whittaker, privacy

    Doctor Who's TARDIS has sprung a data leak, Facebook's creepy patents are unmasked, and an app to keep women safe on dates has surprising origins.

  • 084: No! My voice is not my password

    June 28th, 2018  |  33 mins 54 secs
    biometrics, domestic abuse, hmrc, iot, privacy, smartphone, spying, voice prints

    Who's been collecting the voice prints of millions of people saying "My voice is my password"? Why has it become tougher for law enforcement to scoop up cellphone data? And who's been turning up your central heating?

  • 083: Fake email derails clarinetist's dream

    June 21st, 2018  |  27 mins 32 secs
    chromecast, clarinet, email, google, google home, password, privacy, this american life, vulnerability

    Hell hath no fury like a jealous clarinetist's girlfriend! Your Google ChromeCast could be letting stalkers find out where you live! And why on earth is Graham recommending people write their passwords down in a book!?