Smashing Security

How are scammers stealing your money through Google Maps? Why did the FBI create a fake FedEx website? And how are US senators hoping to stop Grinch bots ruining Christmas?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Maria Varmazis.And don't miss our special bonus interview about passwords with Rachael Stockton of LastPass, sponsors of this week's show.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guests: Maria Varmazis and Rachael Stockton.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:A new bank scam using Google Maps loophole — The Hindu.Google’s sorry that this crudely offensive image of the Apple logo turned up in Maps — The Washington Post.‘Edwards Snow Den’ infiltrates the White House on Google Maps — The Washington Post.The FBI Created a Fake FedEx Website to Unmask a Cybercriminal — Motherboard.what3words | Addressing the world.When the FBI rather than the fraudsters make a fake FedEx website — Graham Cluley.Fingerlings — YouTube.Lawmakers introduce bill to stop bots from ruining holiday shopping — CNET.The Internet Arcade.Alley Cat — The Internet Arcade.On November 26th, a mole will land on Mars — The Oatmeal.Why did Apple remove the iPhone headphone jack? — Fast Company.A simple, cheap and very reliable solution for phones without headphone jack — Reddit.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

28 Nov 20181h

Tesla takes customer service a step too far, is it a romantic gesture or stalking when you email 246 women called Nicole, and Carole finds herself in a Facebook dilemma.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Jessica Barker.Sponsored By:Smashing Security: We're sponsoring ourselves this week! Get in touch at studio@smashingsecurity.com if you're interested in partnering with us for a future episode of the show.Support Smashing SecurityLinks:How I Went From Tesla Delivery Hell To Tesla Giving Me Control Of Their Site Forums With Over 1.5 Million Tesla Account Contacts — DansDeals.com.Customer Complains About Tesla Forums, Tesla Accidentally Gives Him Control Over Them — Motherboard.A Guy Emailed 246 Nicoles Trying To Find The One He Met At A Bar And Now They're All Friends — Buzzfeed News.Facebook exodus: 44 percent of American users ages 18-29 have deleted app — CNBC.How Facebook employees reacted to NYT report on leadership, scandals — Business Insider.Delay, Deny and Deflect: How Facebook’s Leaders Fought Through Crisis — New York Times.Facebook’s top execs ‘make tobacco executives look like Mister Rogers’ — Recode.Facebook Morale, Hurt by Share Drop, Suffers Another Hit — Bloomberg.“I Hope It Cracks Who She Is Wide Open”: Inside Silicon Valley, Many Have Long Known Sheryl Sandberg Isn’t a Saint — Vanity Fair.Now eight parliaments are demanding Zuckerberg answers for Facebook scandals — TechCrunch.The Beatles - Glass Onion (2018 Mix) — YouTube.The Beatles (White Album) 50th Anniversary Edition — The Beatles.American Animals.Krissy Brierre-Davis (@krissys_kitchen) — Twitter.iPhone hack: Thousands of people just discovered the 'life-changing' space bar trick — The Independent.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

21 Nov 201844min

Does your employer want to turn you into a cyborg? Was this phishing test devised by an evil genius? And how did a cinema chain get scammed out of millions, time and time again...?Oh, and the subject of erasable pens comes up again.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Scott Helme.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Scott Helme.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Cinema Chain Sees Bad Movie Script Play Out As It Loses Millions In Email Scam — Martijn Grooten writes on Forbes.Internet con men ripped off Pathe NL for €19m in sophisticated fraud — DutchNews.nl.Court documents describing the scam — It's in Dutch. Don't ask us to translate it.Tweet from InfoSecSherpa describing diabolical phishing test.BBC Click on Twitter: "Could you be paying for things using just your hand?" — Scott Helme is filmed getting an implant.The future prospects of embedded microchips in humans as unique identifiers: the risks versus the rewards (PDF) — University of Wollongong, Australia.Alarm over talks to implant UK employees with microchips — The Guardian.I, Tonya trailer — YouTube.Rocketbook.Introducing Rocketbook Everlast — YouTube.Bohemian Rhapsody Performed in 42 Styles — YouTube.Open Culture.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

14 Nov 201854min

One travel blogger finds you don't have to be Kylie Jenner to be targeted by an Instagram hacker. When 40 iPhones at a hospital mysteriously die, what could be the explanation? And, surprise surprise, political parties in the USA are throwing around hacking accusations.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security's Mark Stockley.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Mark Stockley.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management.Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Kylie Jenner — Instagram.Hacker, angry over unpaid $200, deletes Abu Dhabi-based travel blogger's account — Gulf News.Of Travels & Tales — Delaine Maria D’Costa's blog.Delaine Maria D’Costa's Instagram accountIG hacked! — Delaine Maria D’Costa posts an Instagram story about how she was hacked.Instagram finally supports third-party authentication apps for greater account security — Graham Cluley.Spooky miasmic gas bricks hospital iPhones (mwah ha ha ha) — Naked Security.MRI disabled every iOS device in facility — Reddit.Voting Machine Manual Instructed Election Officials to Use Weak Passwords — Motherboard.After failed hacking attempt SoS launches investigation into Georgia Democratic party — Press release on Secretary of State's website (which, by the way, doesn't use HTTPS).Mid-term elections 2018: Race rows mire campaign home stretch — BBC News.The Cybersecurity 202: Brian Kemp's hacking allegations highlight the challenges of preserving voter confidence — The Washington Post.Georgia governor’s race roiled by election security charges — Associated Press.Elections security: Federal help or power grab? — Politico (2016).Georgia Officials Quietly Patched Security Holes They Said Didn't Exist — ProPublica.The Erasable Pen - Pilot Frixion - Gear for Back to School — YouTube.FriXion Family by PilotSapiens: A Brief History of Humankind by Yuval Noah Harari — We're not listing the Pick of the Week Mark eventually chose as it's too rude.Isle of Dogs movieSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

7 Nov 201852min

Who deserves to die in a driverless car crash? Who has been sniffing around the Girl Scouts' email account? And just how long would it take for a geologist to visit 9,000 adult web pages?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by journalist and "Friends" fan Dan Raywood.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Dan Raywood.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Self-Driving Cars: The Ethical Dilemma — YouTube.Moral Machine — A platform for gathering a human perspective on moral decisions made by machine intelligence, such as self-driving cars.Moral Machine - Human Perspectives on Machine Ethics — YouTube.Girl Scouts' personal information affected by recent data breach — ABC30.Girl Scouts Alerted to Possible Data Breach — Infosecurity Magazine.Where does Girl Scout cookie money go? — SAS Learning Post."You're a Big Scrud" — YouTube.USGS IT Security vulnerabilities (PDF) — Office of Inspector General management advisory.Porn-Watching Employee Infected Government Networks With Russian Malware, IG Says — NextGov.100 Feds Found to Be Frequent Workplace Porn-Watchers — Government Executive.Ten Years Ago — See what the internet was doing...The Wayback MachineDead Rock Stars podcastFree RiceWorld Food ProgrammeSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

31 Okt 201847min

A Facebook friend request leads to arrest, Twitter scams ride again via promoted ads, and adult websites expose their members. Oh, and Graham finds out what Rule 34 is.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management.Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Robber contacts victim on Facebook to apologize, Reading police say — Reading EagleMaria Varmazis spots a promoted, verified scam tweet — TwitterWhy is Elon Musk promoting this Bitcoin scam? (He’s not) — Naked SecurityTwitter thought Elon Musk's bizarre tweets were evidence he'd been hacked — Graham CluleyHack on 8 adult websites exposes oodles of intimate user data — Ars TechnicaWife Lovers website snapshot — Wayback MachineFriends Reunited — WikipediaThe Beano — WikipediaFormer CIA Chief Explains How Spies Use Disguises — YouTubeWhat Makes ‘The Good Place’ So Good? — The New York TimesThe Good Place Season 1 Trailer — YouTubeTrolley problem — WikipediaIRL Glasses Block All the Screens Around You — WiredIRL Glasses - Glasses that Block Screens by Ivan Cash — KickstarterSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

24 Okt 201850min

Yes, Smashing Security has reached its 100th episode!Despite our celebratory mood, we don't forget to take a look at the security stories of the last week - including an alarming IoT failure and a dating app disaster for Donald Trump devotees.All this and much more is discussed in this very special 100th edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Boxcryptor: Boxcryptor encrypts your sensitive files and folders in Dropbox, Google Drive, OneDrive and many other cloud storages. It combines the benefits of the most user friendly cloud storage services with the highest security standards worldwide. Encrypt your data right on your device before syncing it to the cloud providers of your choice.Listeners can get a 40% discount on the Boxcryptor Personal License (private use) and Boxcryptor Business (perfect for self-employed) by visiting smashingsecurity.com/boxcryptorSupport Smashing SecurityLinks:The very first episode of Smashing Security: "One cup, two hotel guests" — Sorry about the poor audio quality. Turns out we got better...Yale UK announces some "unplanned network maintenance" — TwitterYale UK's network maintenance isn't going well — TwitterCllr Steve Wortley is not very happy with Yale UK — TwitterBeth is not impressed with Yale UK either — TwitterKirstie Pendry doesn't fancy waking her entire street at 5am — TwitterYale Smart Home Borkage: Server Issues Cause Alarm App Fail — Computer Business ReviewYale Weds: Just some system maintenance, nothing to worry about. Yale Thurs: Nobody's smart alarm app works — The RegisterHundreds of 'smart' locks bricked by flubbed remote update — Graham CluleyHotel guests locked in their rooms by ransomware? It doesn't make sense — Graham Cluley71% of Tinder users say political differences are a deal breaker — MSNBCNew Dating App for Trump Supporters Seeks to ‘Make America Date Again’ — NewsweekThe ‘Donald Daters’ Trump Dating App Exposed Its Users’ Data — MotherboardDonald Daters, a dating app for Trump supporters, leaked its users’ data — TechcrunchHow I “found” the database of the Donald Daters AppRobert Baptiste's video of Donald Daters vulnerability — TwitterBlue Peter — WikipediaTony Walsh's beautiful tribute to Blue Peter will give you goosebumps — CBBC on TwitterJanet Ellis — WikipediaSophie Ellis-Bextor — WikipediaTony Walsh's performance of 'This Is The Place' at the Manchester attack vigil — YouTubeA Scary Time by Lynzy Lab — YouTubeSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

17 Okt 201852min

With Carole in the wilds of Canada, and Graham knee-deep in a security conference in Glasgow, we drag an episode out from the archives of February 2017 - looking at the thorny subject of passwords.Join computer security veterans Graham Cluley, Carole Theriault, and Vanja Švajcer as they offer some advice and tips for computer users.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Vanja Švajcer.Sponsored By:MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management.Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

10 Okt 201816min