Smashing Security

News and views from the world of cybersecurity, hacking, and internet threats

About the show

A helpful and hilarious take on the week's tech SNAFUs. Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. It's not your typical cybersecurity podcast...

Winner: "Best Security Podcast 2018" and "Best Security Podcast 2019."

Follow the podcast on Twitter at @SmashinSecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK).

Smashing Security on social media

Episodes

  • 045: Deloitte fail, CCleaner, and dotards on Twitter

    September 28th, 2017  |  36 mins 25 secs
    ccleaner, deloitte, donald trump, klingon, malware, star trek, twitter, wildergorn

    Deloitte suffers an embarrassing hack, CCleaner spreads malware, and Twitter explains why it isn't planning to ban Donald Trump from Twitter anytime soon.

  • 044: Bonus behind the scenes - shower time

    September 26th, 2017  |  6 mins 59 secs
    facetime, iphone, shower

    Carole wants to know why Graham keeps Facetiming her from the shower.

  • 043: Backups - a necessary evil?

    September 21st, 2017  |  29 mins 18 secs
    backups, cloud, ransomware, tina turner

    When did you last backup your data? How and what should you backup? And where should you store them?

  • 042: Equifax, BlueBorne, and the iPhone X

    September 14th, 2017  |  45 mins 47 secs
    apple, blueborne, bluetooth, chess, chessable, data breach, equifax, facial recognition, identity theft, iphone x, squinch, vulnerability

    Equifax's shambolic response to its huge data breach, a scary-sounding Bluetooth exploit, and Apple's iPhone X comes with Face ID.

  • 041: Hacking Instagram, facial failures, and spying bosses

    September 7th, 2017  |  46 mins 10 secs
    brian krebs, doxagram, facial recognition, instagram, malwaretech, marcus hutchins, notting hill carnival, spyware, the big sick

    It's easy to phone up a celebrity on Instagram following security breach, facial recognition at Notting Hill Carnival can't tell the girls from the boys, and companies are spying on their workers' activities.

  • 040: The show that cost Troy Hunt 14 dollars

    August 31st, 2017  |  47 mins 34 secs
    2fa, donald trump, drone, hoax, hurricane harvey, instagram, onliner, selena gomez, sharks, spam, the phoenix comic, twitter, william c bradford

    Are public figures lying about being hacked? What were online criminals doing with 711 million email addresses? And how could scammers profit from Hurricane Harvey?

  • 039: Woah - are we talking to a cyborg?

    August 24th, 2017  |  46 mins 1 sec
    cyborg, dominos, https, iot, nfc, overcooked, robot, ropemaker, vulnerability

    Hackers could change emails in your inbox after they are delivered, the web is getting more and more encrypted, and hacked robots can be commanded to umm... stab you.

  • 038: Gents! Stop airdropping your pics!

    August 17th, 2017  |  44 mins 55 secs
    airdrop, bluetooth, brute force, car hacking, chess, email, garry kasparov, iot, lovefilm, malwaretech, marcus hutchins, sam harris, smart lock

    WannaCry hero Marcus Hutchins (aka MalwareTech) pleads not guilty to malware charges, the Scottish parliament is hit by a brute force attack, IoT smart locks aren't so smart, and.. ahem.. someone is sending intimate pics via AirDrop to unsuspecting commuters.

  • 037: Boobs, dragons and data breaches

    August 10th, 2017  |  37 mins 38 secs
    bit9, carbon black, data breach, disney, extortion, game of thrones, hbo, marcus hutchins, privacy

    Hackers are holding HBO to ransom after a massive data breach, and have leaked the phone numbers and email addresses of "Game of Thrones" cast members. Has security firm Carbon Black been leaking customers's sensitive files while trying to scan them? And Disney's mobile apps are accused of spying on kids...

  • 036: Flash? Clunk flush... and hacking security researchers

    August 3rd, 2017  |  44 mins 57 secs
    adobe flash, billboard, fireeye, mandiant, reply all, tickled, vulnerability

    A security threat researcher is badly hacked in a revenge attack. Some people want to save Adobe Flash, but is that wise? And a poorly-secured electronic billboard starts displaying offensive images...

  • 035: Up the Roomba with mandatory Chinese spyware

    July 27th, 2017  |  37 mins 24 secs
    china, jing wang, rehab, roomba, spyware, uyghur

    China is forcing people to install spyware on their smartphones, young cyberoffenders are offered rehab, and robot vacuum cleaners want to sell maps of the inside of your house to tech firms.

  • 034: The pen is mightier than the password

    July 20th, 2017  |  48 mins 35 secs
    ashley madison, biometrics, fleabag, porn

    The UK government wants you to give your credit card details to porn sites, Ashley Madison offers compensation to the people whose lives it ruined, and an adult website wants you to pass its unorthodox and below-the-belt biometric identity check... gulp!

  • 033: 1Password, net neutrality, and spatchcock chicken

    July 13th, 2017  |  42 mins 4 secs
    1password, driverless cars, net neutrality, password manager, the red pill

    Is password manager 1Password treating its customers unfairly? Are autonomous cars driving us around the bend? And what is this Net Neutrality thing anyway?

  • 032: The iPhone 8, a data breach at the AA, and a mystery no show

    July 6th, 2017  |  35 mins 26 secs
    aa, apple, biometrics, data breach, ear wax, facial recognition, iphone 8

    The iPhone 8 is on its way and may use 3D facial recognition rather than a fingerprint sensor to lock out intruders, and the UK's Automobile Association claims it hasn't leaked any credit card data, so why is it getting so upset about security researchers publishing screenshots of leaked data?

  • 031: Petya (don't know the name of this ransomware)

    June 29th, 2017  |  44 mins 37 secs
    alexa, amazon echo, driverless cars, notpetya, petya, ransomware

    Another major ransomware outbreak rattles the world - but no-one can decide what it's called, the danger posed to driverless cars by kangaroos, and do you really want an Amazon Echo Show?

  • 030: GDPR - The good and the bad

    June 22nd, 2017  |  26 mins 43 secs
    gdpr

    What is GDPR, and what does it mean to your business? Carole Theriault and Graham Cluley are joined by special guest Kevin Gorsline to discuss.