Smashing Security

Facebook says it's sticking up for the little guys as it picks a fight with Apple, there are testing times on the trains, and Twitter takes a tip.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Ray [REDACTED].Visit https://www.smashingsecurity.com/227 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Ray [REDACTED].Sponsored By:1Password: Introduce your family to better online security and safer browsing habits with 1Password.Share more than passwords — save logins, documents, credit cards, and more, accessible on all your devices.Sharing is made simple. Keep personal logins private, and easily share access to what they need.Recover 1Password access for family members so they never get locked out.Find out more and try 1Password free for 14 days at 1Password.comOneLogin: According to the OneLogin IAMokay Mental Health Survey, more than 77% of technology leaders have said that their work-related stress increased due to the COVID-19 pandemic.As a result, CISOs and IT executives have been under ever-increasing pressure - leading to deteriorating mental health, addiction issues, and even suicidal thoughts and tendencies. OneLogin's message? You're not alone. Attend their live event on Weds May 26, "Keeping the Mind Clear and the Company Secure" at smashingsecurity.com/oneloginiamokaySkiff: We store more personal information on our devices than we do in our homes. Where do you go online when you want to write or share something privately?Skiff is the first collaboration platform built for privacy from the ground up. Every document, note, and idea you write is end-to-end encrypted and completely private. Only you and your trusted collaborators - no one else, not even Skiff - can see what you've created.Skiff is offering listeners of Smashing Security early access. Sign up now: skiff.org/smashingSupport Smashing SecurityLinks:Train firm’s ‘worker bonus’ email is actually cybersecurity test — The Guardian.Anger Over Shocking Covid Bonus Stunt At West Midlands Trains — TSSA.Researcher calls out privacy flaw in Twitter’s new ‘Tip Jar’ donation feature — The Daily Swig.Twitter's Tip Jar Privacy Fiasco Was Entirely Avoidable — Wired.We Checked 250 iPhone Apps—This Is How They’re Tracking You — Wirecutter.96% of US users opt out of app tracking in iOS 14.5, analytics find — Ars Technica.App Privacy Details on the App Store — Apple.What is App Tracking Transparency and how do you block app tracking? — MacWorld.Daily iOS 14.5 Opt-in Rate — Flurry.If an app asks to track your activity — Apple Support.Another Kind of Mind – A Different Kind of Beatles Podcast.One Sweet Dream podcast.The Pret Index: Pret Sandwich Sales Show Where U.K. Workers Are Returning to the Office — Bloomberg.Unframed : Intimacies, Félix Vallotton — YouTube.Unframed, a virtual reality series about Swiss painters.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

12 Mai 202149min

How did the SCAM cryptocurrency become a success? Why is Google allowing government rip-off ads to still appear on search results? And why on earth is everyone suddenly spending millions of dollars on NFTs?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by David McClelland.Visit https://www.smashingsecurity.com/226 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: David McClelland.Sponsored By:Skiff: We store more personal information on our devices than we do in our homes. Where do you go online when you want to write or share something privately?Skiff is the first collaboration platform built for privacy from the ground up. Every document, note, and idea you write is end-to-end encrypted and completely private. Only you and your trusted collaborators - no one else, not even Skiff - can see what you've created.Skiff is offering listeners of Smashing Security early access. Sign up now: skiff.org/smashingKnowBe4: Did you know that 91% of successful data breaches started with a spear phishing attack?Find out what percentage of your employees are at risk with KnowBe4's free phishing security test.Plus, see how you stack up against your peers with the new phishing industry benchmarks.Find out more at knowbe4.com/freetest1Password: Introduce your family to better online security and safer browsing habits with 1Password.Share more than passwords — save logins, documents, credit cards, and more, accessible on all your devices.Sharing is made simple. Keep personal logins private, and easily share access to what they need.Recover 1Password access for family members so they never get locked out.Find out more and try 1Password free for 14 days at 1Password.comSupport Smashing SecurityLinks:Andre Lewis (@dreesuschrist) — TikTok.This TikToker’s ‘SCAM’ Cryptocurrency Took Off and He Can’t Believe It — Motherboard.Simple. Cool. Automatic. Money — Scamily.io.Why can't Google get a grip on rip-off ads? — BBC News.New Government Services Policy — Google Advertising Policies.Fungible definition and meaning — Collins English Dictionary.NFTs, explained: what they are, and why they’re suddenly worth millions — The Verge.Why Did Someone Pay $560,000 for a Picture of My Column? — The New York Times.Jack Dorsey is trying to sell his first tweet as an NFT — The Verge.CryptoPunks — Larva Labs.Johnny Depp selling Winona Ryder poem as part of NFT collection — Female First.NFTs are suddenly everywhere, but they have some big problems — CNN.Chrome can now caption audio and video — Google.Gosforth Handyman.Gosforth Handyman — YouTube.Grow Bag Pros And Cons – Advantages And Disadvantages Of Grow Bags — Gardening KnowHow.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

5 Mai 202150min

Google loses its domain in Argentina, how do gripe sites make their dough, and has John Deere solved the cybersecurity problem?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley.Visit https://www.smashingsecurity.com/225 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Mark Stockley.Sponsored By:1Password: The 1Password you know and love, now for all your company secrets1Password protects secrets like logins and credit cards. Secrets Automation protects secrets in your company infrastructure – like API tokens, application keys, and private certificates – and supplies them when and where they’re needed.Visit 1password.com/secrets/ to learn more.Support Smashing SecurityLinks:Smashing Security Christmas LIVE STREAM — Including Mark Stockley and his chickens.How a WhatsApp status loophole is aiding cyberstalkers — Traced.Google Argentina's domain name bought by man for £2 — BBC News.Hacker breaks into Google Palestine homepage in protest of Maps depiction — Firstpost.Google Security Rewards - 2015 Year in Review — Google Online Security Blog.Microsoft forgets to renew hotmail.co.uk domain — The Register.184 Years In: Ag Giant John Deere Awaits Its First Software Vulnerability — Forbes.Bugs Allowed Hackers to Dox John Deere Tractor Owners — Vice.The Wurzels sing "Combine Harvester" — YouTube.The Slander Industry — The New York Times.A Vast Web of Vengeance — The New York Times.Remove content about me on sites with exploitative removal practices from Google — Google Search Help.Online demo of MicroMacro - Crime City.MicroMacro - Crime City.They Hacked McDonald’s Ice Cream Machines—and Started a Cold War — Wired.Mcbroken.Overheard In New York.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

28 Apr 202156min

Facebook has managed to do the seemingly impossible - and had a data breach about its handling of a data breach. Meanwhile, we chat to the host of the brand new podcast about North Korea's hackers targeting the rest of the world, and discuss if an intern can be trusted to monitor your security.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Geoff White of "The Lazarus Heist" podcast.Plus! Don't miss our featured interview with Duo's Helen Patton.Visit https://www.smashingsecurity.com/224 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guests: Geoff White and Helen Patton.Sponsored By:1Password: The 1Password you know and love, now for all your company secrets1Password protects secrets like logins and credit cards. Secrets Automation protects secrets in your company infrastructure – like API tokens, application keys, and private certificates – and supplies them when and where they’re needed.Visit 1password.com/secrets/ to learn more.Duo: While remote work has been on the rise for years now, the recent rapid expansion of work-from-home culture presents new security challenges. Duo Security makes application access more secure for organizations of all sizes. Its modern access security is designed to safeguard all users, devices, and applications - so you can stay focused on what you do best.Proactively reduce the risk of a data breach, verify users' identities, gain visibility into every device and enforce polices to secure access to every application. Give your organization the peace-of-mind that only complete device visibility can bring. Visit Duo.com to sign-up for a free 30 day trial.Support Smashing SecurityLinks:Facebook isn’t sorry for letting someone steal personal details of half a billion users — Graham Cluley.Stolen Data of 533 Million Facebook Users Leaked Online — Business Insider.Interne mail toont hoe Facebook veiligheidsproblemen wil 'normaliseren' — Data News.Facebook suffers a data breach about how it’s hoping to stop the media talking about its last data breach — Graham Cluley.The Lazarus Heist podcast — BBC World Service.Local Government Organizations Most Frequently Targeted by Ransomware — Infosecurity Magazine.Update On Ransomware Attack Against Town Of Didsbury — CKFM.Entry-Level Information Security Positions — Dummies.How to get an Entry-Level Cyber Security Job in 2021 — Comparitech.Getting into cyber security — Cisco.Cybersecurity training — NIST.Best online cybersecurity courses of 2021: free and paid certification programs, degrees and masters — TechRadar.PISCES: Public Infrastructure Security Cyber Education System.Paperball Deluxe — Nintendo store.Paperball — Steam.Paperball Deluxe – Indie Super Monkey Ball!? — YouTube.Jeff Mills - "Exhibitionist Mix" ( Full version) — YouTube.Invincible — Amazon Prime.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

21 Apr 20211h 5min

Should insurance companies be banned from helping companies pay ransomware demands? How has malware messed with motorcars in the United States? And how are cybercriminals exploiting alcohol drinking during the pandemic?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.Visit https://www.smashingsecurity.com/223 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:1Password: With 1Password you only ever need to memorize one password. All your other passwords and important information are protected by your Master Password, which only you know. Take the 14 day free trial now.Duo: While remote work has been on the rise for years now, the recent rapid expansion of work-from-home culture presents new security challenges. Duo Security makes application access more secure for organizations of all sizes. Its modern access security is designed to safeguard all users, devices, and applications - so you can stay focused on what you do best.Proactively reduce the risk of a data breach, verify users' identities, gain visibility into every device and enforce polices to secure access to every application. Give your organization the peace-of-mind that only complete device visibility can bring. Visit Duo.com to sign-up for a free 30 day trial.Support Smashing SecurityLinks:Lessons of the SolarWinds hack — Article by Marcus Willett, IISS.Insurers defend covering ransomware payments — BBC News.Cyber insurance giant CNA hit by ransomware attack — Graham Cluley.FatFace pays out $2 million to Conti ransomware gang — Graham Cluley.How do we stamp out the ransomware business model? Ban insurance payouts for one, says ex-GCHQ director — The Register.Cyber Attack Forces Vehicle Emissions Testing Company to Halt Operations in 8 States — The Drive.Malware attack is preventing car inspections in eight US states — Bleeping Computer.Service Restoration Status Update — Applus Tech.Changes in Adult Alcohol Use and Consequences During the COVID-19 Pandemic in the US — JAMA Network.Rebalancing the ‘COVID-19 effect’ on alcohol sales — NielsenIQ.Alcohol does not protect against COVID-19; access should be restricted during lockdown — WHO.Lockdown Saw Rise in Wine Domains and Wine Scammers — Recorded Future.The Raven Remastered — THQ Nordic.The Raven Remastered trailer — YouTube.Westworld — HBO.Thermapen Fast, Accurate Instant-read Thermometers — Thermoworks.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

14 Apr 202151min

Deepfake expert Nina Schick joins us as we discuss synthetic media, Facebook's latest data fiasco, and some less-than-brilliant April Fool's tricks.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast, hosted by computer security veterans Graham Cluley and Carole Theriault.Visit https://www.smashingsecurity.com/222 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Nina Schick.Sponsored By:Duo: While remote work has been on the rise for years now, the recent rapid expansion of work-from-home culture presents new security challenges. Duo Security makes application access more secure for organizations of all sizes. Its modern access security is designed to safeguard all users, devices, and applications - so you can stay focused on what you do best.Proactively reduce the risk of a data breach, verify users' identities, gain visibility into every device and enforce polices to secure access to every application. Give your organization the peace-of-mind that only complete device visibility can bring. Visit Duo.com to sign-up for a free 30 day trial.1Password: With 1Password you only ever need to memorize one password. All your other passwords and important information are protected by your Master Password, which only you know. Take the 14 day free trial now.Support Smashing SecurityLinks:Stolen Data of 533 Million Facebook Users Leaked Online — Business Insider.Mark Zuckerberg is on Signal — Dave Walker on Twitter.The Facebook Phone Numbers Are Now Searchable in Have I Been Pwned — Troy Hunt.Facebook isn’t sorry for letting someone steal personal details of half a billion users — Graham Cluley.Smashing Security episode 75: Quitting Facebook.Deep Fakes - the coming infocalypse. — Nina Schick.This Person Does Not Exist.'Deepfake' AI Trump impersonator highlights election fake news threat — CNBC.Past Google April Fools Pranks As It Cancels 2021's Over COVID — Newsweek."Joke" tweet by Piers Morgan — Twitter.The joke is on Volkswagen after April Fool’s name change debacle — Al Jazeera.Deliveroo April Fool's joke backfires in France — BBC News.The 8 Generations of Video Game Consoles — BBC Archive.The Terror — BBC iPlayer.Pretend it's a city — Netflix.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

7 Apr 202155min

FatFace stumps up $2 million to its ransomware extortionists, an IT administrator is caught with his pants down, Mobikwik blames its users for a data breach, and we burgle a house... virtually.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Host Unknown's Thom Langford.Visit https://www.smashingsecurity.com/221 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Thom Langford.Sponsored By:1Password: With 1Password you only ever need to memorize one password. All your other passwords and important information are protected by your Master Password, which only you know. Take the 14 day free trial now.Support Smashing SecurityLinks:FatFace would like everyone to keep its data breach “strictly private and confidential” — Graham Cluley.Retailer FatFace pays $2m ransom to Conti cyber criminals — Computer Weekly.Streisand effect — Wikipedia.'We have your porn collection': The rise of extortionware — BBC News.Mobikwik Data Breach: Data of 10 crore Mobikwik users for sale on dark web, say cybersecurity experts — The Economic Times.Mobikwik data breach said to be largest KYC leak, personal data of 3.5 million users up for sale on dark web — India Today.Rick Beato — YouTube.What Makes This Song Great? Ep.94 Gordon Lightfoot — YouTube.Adriano Celentano - Prisencolinensinainciusol — YouTube.Ember: The World’s First Temperature Control Mug.Slow-cooked guide to Sous Vide Eggs — Serious Eats.Art History 101 — YouTube.Chris Luedke, art historian — Twitter.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

31 Mar 202149min

PC manufacturer Acer might have received a $50 million ransom demand, a warning spreads on Facebook about a trick being used by hackers, and why are the City of London's police not happy about Sci Hub?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Alex Eckelberry.Visit https://www.smashingsecurity.com/220 to check out this episode’s show notes and episode links.Follow the show on Twitter at @SmashinSecurity, or on the Smashing Security subreddit, or visit our website for more episodes.Remember: Follow us on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Alex Eckelberry.Sponsored By:1Password: With 1Password you only ever need to memorize one password. All your other passwords and important information are protected by your Master Password, which only you know. Take the 14 day free trial now.Sailpoint: SailPoint Identity Security can help you enable your business and manage the cyber risk associated with the explosion of technology access in the cloud enterprise – ensuring each worker has the right access to do their job – no more, no less.Gain unmatched visibility and intelligence while automating and accelerating the management of all user identities, entitlements, systems, data and cloud services.Support Smashing SecurityLinks:Hackers cannot post Facebook comments on your behalf without you seeing it — AFP Fact Check.Does a Facebook Hack 'Hurt and Offend' Friends? — Snopes.Stop sending mail you later regret — Gmail blog.April Fools Check: Did Google Really Release Mail Goggles? — TechCrunch.When was blinking invented?Computer giant Acer hit by $50 million ransomware attack — Bleeping Computer.Ransomware gang says it targets firms who have cyber insurance. And what’s more, it will hack insurance firms to identify them… — Graham Cluley.Is the staggeringly profitable business of scientific publishing bad for science? — The Guardian.Police warn students and universities of accessing an illegal website to download published scientific papers — City of London Police.Meet the pirate queen making academic papers free online — The Verge.Sci-Hub: How Does it Work? — The Scholarly Kitchen.Glitterbomb Trap Catches Phone Scammer (who gets arrested) — YouTube.After Life — Netflix.The One — Netflix.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

24 Mar 202147min