Sexy cows banned on Facebook

Uber may not face prosecution over its handling of a 2016 data breach - but its former chief security head does; how to defend your digital devices' data while on vacation, and how to change your accent with artificial intelligence.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security's Paul Ducklin.Plus don't miss our featured interview with Ian Farquhar of Gigamon.Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Episode links:Uber Enters Non-Prosecution Agreement Related to 2016 Data Breach — US Department of Justice.Former Uber Security Chief Joe Sullivan Must Face Driver Fraud Charges — Bloomberg.Uber to pay $148 million in data breach settlement — TechCrunch.Uber paid hackers $100,000 to keep data breach quiet — Graham Cluley.Uber CISO's trial underscores the importance of truth, transparency, and trust — CSO Online.7 cybersecurity tips for your summer vacation! — Naked Security.Sanas demo.Sanas Raises $32M for Breakthrough AI Technology for Real-Time Accent Translation — Sanas press release.This 6-Million-Dollar AI Changes Accents as You Speak — IEEE Spectrum.Call centre workers can use AI to mimic your accent on the phone — New Scientist.A little less accent, a little more customer service — ComputerWorld.What Is Accent Reduction? — Accent Advisor.Compound pejoratives on Reddit – from 'buttface' to 'wankpuffin' — Colin Morris.Melissa computer virus — Wikipedia.Dedham Hall.3D capture of Carole Theriault — Polycam.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Bitwarden– Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.SolCyber – SolCyber delivers Fortune 500 level cybersecurity for small and medium-sized enterprises. If the bad guys aren’t being discriminating about who they’re attacking, how can you settle for anything less?Gigamon - Gigamon is the leading deep observability company. Download their latest report into the state of ransomware to learn why deep observability is the new frontier for tackling the ransomware crisis.Support the show:You can help the podcast by telling your friends and colleagues about “Smashing Security”, and leaving us a review on Apple Podcasts or Podchaser.Become a Patreon supporter for ad-free episodes and our early-release feed!Follow us:Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Privacy & Opt-Out: https://redcircle.com/privacy

27 Jul 20221h 8min

In this special edition of the "Smashing Security" podcast, computer security veterans Graham Cluley and Carole Theriault welcome back author and journalist Jamie Bartlett - host of "The Missing CryptoQueen" podcast.Jamie tells us about his new book, which shares more details about the disappearance of cryptocurrency scammer Dr Ruja Ignatova, and the subsequent hunt by law enforcement.Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Episode links:The Missing CryptoQueen podcast — BBC.The Missing CryptoQueen book — Penguin.Missing Cryptoqueen: FBI adds Ruja Ignatova to top ten most wanted — BBC News.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Bitwarden – Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.Drata – Put Security and Compliance on Autopilot. Build trust with your customers and scale securely with Drata, the smartest way to achieve continuous SOC 2, ISO 27001 & HIPAA compliance.Cyber Security Inside podcast -bringing you the most important and timely security topics as well as other industry experts for insightful conversations.Support the show:You can help the podcast by telling your friends and colleagues about “Smashing Security”, and leaving us a review on Apple Podcasts or Podchaser.Become a Patreon supporter for ad-free episodes and our early-release feed!Follow us:Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Privacy & Opt-Out: https://redcircle.com/privacy

20 Jul 202242min

A self-proclaimed "super hacker" causes problems in the Magic Kingdom, criminals regret trusting Anom phones, and lawsuits are filed against TikTok.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Anna Brading.Plus don't miss our featured interview with Scott McCrady, the CEO of SolCyber Managed Security Services.Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Episode links:Official Disneyland Instagram Account Hacked This Morning! — The Disney blog.Disneyland social media accounts hacked, offensive messages posted — Hot for Security.We Got the Phone the FBI Secretly Sold to Criminals — Vice.Parents Sue TikTok, Saying Children Died After Viewing ‘Blackout Challenge’ — The New York Times.Lawmakers Want Social Media Companies to Stop Getting Kids Hooked — Wired.How Social Media Tricks Us Into Thinking We Are Paying Attention — Forbes.Facebook could be sued for addicting children under California bill — Ars Technica.Kids Are Using Social Media More Than Ever, Study Finds — New York Times.2021 Facebook leak — Wikipedia.California Parents Could Soon Sue for Social Media Addiction — Gizmodo.Absurd Trolley Problems.Weird or Confusing.Google Quick, Draw!Unfinished London — Jay Foreman on YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Bitwarden – Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.The Secure Developer – A conversational and insightful podcast, that bridges the gap between dev and sec, from Snyk.SolCyber - SolCyber delivers Fortune 500 level cybersecurity for small and medium-sized enterprises. If the bad guys aren’t being discriminating about who they’re attacking, how can you settle for anything less?Support the show:You can help the podcast by telling your friends and colleagues about “Smashing Security”, and leaving us a review on Apple Podcasts or Podchaser.Become a Patreon supporter for ad-free episodes and our early-release feed!Follow us:Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Privacy & Opt-Out: https://redcircle.com/privacy

13 Jul 202254min

A hacked university might have made a profit after paying a cryptocurrency ransom, China suffers possibly the biggest data breach in history, and Reuters investigates digital mercenaries.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner.Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Episode links:Dutch university paid $220,000 ransom to hackers after Christmas attack — Graham Cluley.Remarkable development in investigation into Maastricht University cyberattack — Maastricht University.Dutch University profits from returned ransomware payment — The Register.Favorable exchange rate on a fake cryptoexchange — Kaspersky.Tweet from @cz_binance about mega-leak.Vast Cache of Chinese Police Files Offered for Sale in Alleged Hack — Wall Street Journal.How mercenary hackers sway litigation battles — Reuters.Countering hack-for-hire groups — Google.The business of hackers-for-hire threat actors — TechRepublic.Fransdita Muafidin on Instagram.Giant Cats Disturbing Civilization — Geeks are sexy.Watch Good Luck to You, Leo Grande — Hulu.Good luck to you Leo Grande (Trailer) — YouTube.This is Love podcast.Cain's Jawbone — Wikipedia.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Bitwarden – Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.Support the show:You can help the podcast by telling your friends and colleagues about “Smashing Security”, and leaving us a review on Apple Podcasts or Podchaser.Become a Patreon supporter for ad-free episodes and our early-release feed!Follow us:Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Privacy & Opt-Out: https://redcircle.com/privacy

6 Jul 202245min

A new version of the LockBit ransomware offers a bug bounty, women uninstall period-tracking apps in fear of how their data might be used against them, and Microsoft's facial recognition tech no longer wants to know how you're feeling.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Thom Langford from The Host Unknown podcast.Plus don't miss our featured interview with Bitwarden founder and CTO Kyle Spearrin.Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Episode links:LockBit 3.0 introduces the first ransomware bug bounty program — Bleeping Computer.Fake copyright infringement emails install LockBit ransomware — Bleeping Computer.Why US women are deleting their period tracking apps — The Guardian.Privacy not included — Mozilla Foundation.The #1 Period Tracker on the App Store Will Hand Over Data Without a Warrant — Vice.Microsoft is removing emotion recognition features from its facial recognition tech — NBC News.Top 10 Emotional AI Examples in 2022 & Reasons for Success — AI Multiple.Analysis of Speech Features for Emotion Detection: A Review — IEEE Xplore.Microsoft's framework for building AI systems responsibly — Microsoft.The Swedish chemist shop sketch — As performed by Mel Smith and Rowan Atkinson on Not the Nine O'Clock News.Alley Cat — Wikipedia.Play Alley Cat — Internet Archive.Alley Cat Remeow Edition — Game Jolt.reMarkable.SOLAR podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Kolide - the SaaS app that sends employees important, timely, and relevant security recommendations concerning their Mac, Windows, and Linux devices, right inside Slack.Bitwarden - Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.Snyk - Find, prioritize, and fix security vulnerabilities in your code.Support the show:You can help the podcast by telling your friends and colleagues about “Smashing Security”, and leaving us a review on Apple Podcasts or Podchaser.Become a Patreon supporter for ad-free episodes and our early-release feed!Follow us:Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Privacy & Opt-Out: https://redcircle.com/privacy

29 Jun 202259min

Internet-connected jacuzzis find themselves in hot water, and a Google engineer claims that their AI has developed feelings.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Episode links:Hot Tub Time Machine trailer — YouTube.Hacking into the worldwide Jacuzzi SmartTub network — Eaton Works.SmartTub — Apple iOS App Store.SmartTub — Google Play store.Hot tub hack reveals washed-up security protection — BBC News.Google engineer Blake Lemoine thinks its LaMDA AI has come to life — The Washington Post.Google engineer put on leave after saying AI chatbot has become sentient — The Guardian.AI's most convincing conversations are not what they seem — The Register.Blake Lemoine's blog.Van Gogh Bristol Exhibition: The Immersive Experience.Van Gogh: The Immersive Experience — YouTube.The Inquiry — BBC World Service.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Kolide - the SaaS app that sends employees important, timely, and relevant security recommendations concerning their Mac, Windows, and Linux devices, right inside Slack.Bitwarden - Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.Drata - Put Security and Compliance on Autopilot. Build trust with your customers and scale securely with Drata, the smartest way to achieve continuous SOC 2, ISO 27001 & HIPAA compliance.Support the show:You can help the podcast by telling your friends and colleagues about "Smashing Security", and leaving us a review on Apple Podcasts or Podchaser.Become a Patreon supporter for ad-free episodes and our early-release feed!Follow us:Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes. Privacy & Opt-Out: https://redcircle.com/privacy

22 Jun 202240min

How did a saxophonist sneak sensitive information in and out of the Soviet Union? How might an Apple AirTag have led to murder? And isn't the world of cryptocurrency and blockchain doing just great?All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault.Visit https://www.smashingsecurity.com/279 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Sponsored By:Kolide: Kolide is a SaaS app that sends employees important, timely, and relevant security recommendations concerning their Mac, Windows, and Linux devices, right inside Slack.Kolide is perfect for organizations that want to move beyond a traditional lock-down model and move to one where employees are educated about security and device management while fixing nuanced problems. We call this approach Honest Security.You can try Kolide on an unlimited number of devices with all its features for free and without a credit card for 14 days. Bitwarden: A password manager is an important tool for generating and saving secure credentials for every online account. Bitwarden makes it easy to stay secure and for businesses to share logins with team members and departments. Open source with published 3rd party security audits, Bitwarden is transparent and secure, utilizing end-to-end and zero knowledge encryption with source code that can be scrutinized by all.Learn how Bitwarden can help you do business faster and more securely at bitwarden.com/smashing and start a free business plan trial today.Drata: Is your organization finding it difficult to achieve compliance and scale its security posture? As G2’s highest rated cloud compliance software, Drata streamlines your SOC 2, ISO 27001, PCI DSS, GDPR & HIPAA compliance and provides 24-hour continuous control monitoring so you focus on scaling securely. Drata is also the only compliance automation platform with a private tenant database. That’s like having your cake and securing it tooCountless security professionals from companies including Notion, FullStory, & BambooHR have shared how crucial it has been to have Drata as a trusted partner in the compliance process. Listeners of Smashing Security can get 10% off Drata and waived implementation fees at smashingsecurity.com/drataSupport Smashing SecurityLinks:Welsh James Bond Timothy Dalton's cello escape in "The Living Daylights" — YouTube.How a Saxophonist Tricked the KGB by Encrypting Secrets in Music — Wired.Woman accused of killing boyfriend using AirTag tracking — The Register.Andre Smith fatally struck by car outside Tilly's Pub, woman charged — Indy Star.Indianapolis woman Gaylyn Morris accused of tracking boyfriend with Apple AirTag, killing him with car, police say — The Washington Post.An update on AirTag and unwanted tracking — Apple.Apple Updates iPhone with 'Safety Check' for Domestic Victims — Gizmodo.Web3 is going just great.Audm - Listen to feature stories from The Atlantic, WIRED, and more.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

15 Jun 202236min

Trouble brews with the Tim Hortons app, Mandiant gets in a tussle with a Russian ransomware gang, and should good faith security researchers be at risk of prosecution?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Lazarus Heist's Geoff White.Visit https://www.smashingsecurity.com/278 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:Snyk: Snyk is a developer security platform. Integrating directly into development tools, workflows, and automation pipelines, Snyk makes it easy for teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and infrastructure as code. Supported by industry-leading application and security intelligence, Snyk puts security expertise in any developer's toolkit.Get started right now, with a free forever account, at snyk.co/smashingKolide: Kolide is a SaaS app that sends employees important, timely, and relevant security recommendations concerning their Mac, Windows, and Linux devices, right inside Slack.Kolide is perfect for organizations that want to move beyond a traditional lock-down model and move to one where employees are educated about security and device management while fixing nuanced problems. We call this approach Honest Security.You can try Kolide on an unlimited number of devices with all its features for free and without a credit card for 14 days. Bitwarden: A password manager is an important tool for generating and saving secure credentials for every online account. Bitwarden makes it easy to stay secure and for businesses to share logins with team members and departments. Open source with published 3rd party security audits, Bitwarden is transparent and secure, utilizing end-to-end and zero knowledge encryption with source code that can be scrutinized by all.Learn how Bitwarden can help you do business faster and more securely at bitwarden.com/smashing and start a free business plan trial today.Support Smashing SecurityLinks:Double-double tracking: How Tim Hortons knows where you sleep, work and vacation — Financial Post.Report: Tim Hortons collected location data without consent — The Register.Joint investigation into location tracking by the Tim Hortons App — Office of the Privacy Commissioner of Canada.Mandiant: “No evidence” we were hacked by LockBit ransomware — Bleeping Computer.Department of Justice Announces New Policy for Charging Cases under the Computer Fraud and Abuse Act — Dept of Justice.DOJ: Congress looked into CFAA updates but effort was stalled by extortion concerns — The Record.The (still) unanswered questions around the CFAA and ‘good faith’ security research — SC Magazine.Sex Education — Netflix.Forest fr1ends — Twitter.Inch Calculator.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

8 Jun 202240min