Smashing Security

Equifax's shambolic response to its huge data breach, a scary-sounding Bluetooth exploit, and Apple's iPhone X comes with Face ID.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Javvad Malik of AlienVault.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Javvad Malik.Sponsored By:Rapid7: Identifying, prioritizing and managing vulnerabilities all the way through to remediation is not only possible, it can be simple. Right now.Build a vulnerability management program that works for you with Insight VM, by Rapid7. Get started with your free 30 day trial now.Support Smashing SecurityLinks:We tested Equifax's data breach checker — and it's basically useless | ZDNetEquifax hack: 44 million Britons' personal details feared stolen in major US data breach"The front page of Equifax's UK website. They don't seem to have room to mention the data breach affecting up to 44 million Brits." - TwitterChatbot lets you sue Equifax for up to $25,000 without a lawyer - The VergeHow to protect yourself in the wake of the Equifax data breachAyuda! (Help!) Equifax Has My Data! — Krebs on SecurityBlueBorne Information from the Research Team - Armis LabsThe five biggest questions about Apple’s new facial recognition system - The VergeCan the government force you to unlock your own phone? | The GuardianUK police have a new tactic to circumvent strong iPhone encryption: steal the unlocked phone out of the criminal’s hand | 9to5MacChessableThe science that makes chess learning easier - Chessable.comYou can actually be allergic to exercise - Pop ScienceDr Mandell's Push and Pull Technique (20-Second Neck Pain Relief) - YouTubeIt's all about the Squinch! - YouTubeSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

13 Sep 201745min

It's easy to phone up a celebrity on Instagram following security breach, facial recognition at Notting Hill Carnival can't tell the girls from the boys, and companies are spying on their workers' activities.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest David Bisson.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: David Bisson.Sponsored By:Recorded Future: Recorded Future is the real-time threat intelligence company whose patented machine learning technology continuously analyzes technical, open, and dark web sources to give organizations unmatched insight into emerging threats.Sign up for free daily threat intelligence updates at https://recordedfuture.com/intelSupport Smashing SecurityLinks:"Who Is Marcus Hutchins?" — Krebs on SecurityAhem, Kim Kardashian Is Naked Up A Tree - Huffington PostHackers Claim Apparent Instagram Fightback Will Not Stop Them From Selling Stolen ‘Doxagram’ Data - The Daily BeastA Note on Security from Instagram’s CTO - Instagram BlogLondon police’s use of facial recognition falls flat on its face – Naked SecurityMisidentification and improvised rules - we lift the lid on the Met's Notting Hill facial recognition operation - LibertyStatement from police commander for Notting Hill Carnival 2016 - Metropolitan PoliceUK govt steams ahead with £5m facial recog system amid furore over innocents' mugshots - The RegisterECHR court reverses ruling on sacking over private messages - BBC NewsMonitoring at work - UK Citizens AdviceThrough the Keyhole: Privacy in the Workplace, an Endangered Right - American Civil Liberties UnionEmployers, Schools, and Social Networking Privacy - American Civil Liberties UnionThe Big Sick (2017) - IMDbGroup Therapy Radio | Streaming live every Friday - YouTubeAbove & Beyond - SoundCloudAbove & Beyond present Group Therapy 250How To Fix a Toilet And Other Things We Can't Do Without SearchSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

7 Sep 201746min

Are public figures lying about being hacked? What were online criminals doing with 711 million email addresses? And how could scammers profit from Hurricane Harvey?All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Troy Hunt.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Troy Hunt.Sponsored By:Recorded Future: Recorded Future is the real-time threat intelligence company whose patented machine learning technology continuously analyzes technical, open, and dark web sources to give organizations unmatched insight into emerging threats.Sign up for free daily threat intelligence updates at https://recordedfuture.com/intelSupport Smashing SecurityLinks:Trump appointee says for the 'past several years' he has been the victim of 'multiple cyber attacks' — Graham Cluley.Trump appointee: Comment calling Obama's mother a 'w@!re' result of 'Internet crimes' against me — CNN.Inside the Massive 711 Million Record Onliner Spambot Dump — Troy Hunt.Have I been pwned? — Check if your email has been compromised in a data breachHarvey Hoax: There are no sharks on Houston's flooded freeways — WCVB 5.Photo of planes at flooded Houston airport is a fake — Daily Mail.Charity Listing - BBB Wise Giving Alliance — Give.org.Wise giving in the wake of Hurricane Harvey — FTC.The Phoenix ComicLittle Ripper Lifesaver Drones Spot Sharks Electronically — YouTube.ChirpChangeSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

30 Aug 201747min

Hackers could change emails in your inbox after they are delivered, the web is getting more and more encrypted, and hacked robots can be commanded to umm... stab you.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by researcher Scott Helme.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Scott Helme.Sponsored By:Rapid7: Identifying, prioritizing and managing vulnerabilities all the way through to remediation is not only possible, it can be simple. Right now.Build a vulnerability management program that works for you with Insight VM, by Rapid7. Get started with your free 30 day trial now.Support Smashing SecurityLinks:Introducing the ROPEMAKER Email Exploit — Mimecast.Did ROPEMAKER just unravel email security? Nah, it's likely a feature — The Register.Measuring HTTPS adoption on the web [USENIX 17] — Research presented by Adrienne Porter Felt (Google) and April King (Mozilla).Alexa Top 1 Million Analysis - August 2017 — Scott Helme's report.ALPHA 2, The World's First Humanoid Robot for the Family — YouTube.UBTech Alpha 2 turns Chucky — YouTubeResearchers warn against 'hackable' robots — IT Pro.Overcooked — Team 17."Could you be paying for things using just your hand? — BBC Click on Twitter.250,000 Dominoes - The Incredible Science Machine — YouTube.Smashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

24 Aug 201746min

WannaCry hero Marcus Hutchins (aka MalwareTech) pleads not guilty to malware charges, the Scottish parliament is hit by a brute force attack, IoT smart locks aren't so smart, and.. ahem.. someone is sending intimate pics via AirDrop to unsuspecting commuters.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Geoff White.Sponsored By:Recorded Future: Recorded Future is the real-time threat intelligence company whose patented machine learning technology continuously analyzes technical, open, and dark web sources to give organizations unmatched insight into emerging threats.Sign up for free daily threat intelligence updates at https://recordedfuture.com/intelSupport Smashing SecurityLinks:"The Secret Life of Your Mobile Phone" — Geoff White's show at the Edinburgh Festival FringeMalwareTech is back online, as he pleads not guilty to Kronos malware charges — Graham Cluley.Scottish parliament hit by cyber-attack similar to Westminster assault — The Guardian.Hackers try to break into Scottish parliament email accounts weeks after Westminster attack — Graham Cluley.Blocking Brute Force Attacks — Advice from OWASP.Hundreds of 'smart' locks bricked by flubbed remote update — Graham Cluley.Friendly neighborhood hacker helps family regain access to locked car — Graham Cluley.AirDropping penis pics is the latest horrifying subway trend — New York Post.Is there a way to view AirDrop transfer history? — Apple Support community.What Is AirDrop? How Does It Work? — Lifewire.Exposing yourself is illegal - so why should the law tolerate cyber-flashing on online dating apps? — The Independent.Saint Louis Rapid & Blitz — Grand Chess Tour.Amazon's LoveFilm postal rentals is shutting down — Radio Times."Waking up with Sam Harris"Smashing Security podcast on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

17 Aug 201744min

Hackers are holding HBO to ransom after a massive data breach, and have leaked the phone numbers and email addresses of "Game of Thrones" cast members. Has security firm Carbon Black been leaking customers's sensitive files while trying to scan them? And Disney's mobile apps are accused of spying on kids...All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by John Hawes.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: John Hawes.Sponsored By:Recorded Future: Recorded Future is the real-time threat intelligence company whose patented machine learning technology continuously analyzes technical, open, and dark web sources to give organizations unmatched insight into emerging threats.Sign up for free daily threat intelligence updates at https://recordedfuture.com/intelSupport Smashing SecurityLinks:FBI arrests WannaCry's 'accidental hero' in connection with Kronos banking trojanHBO hack ransom note: Watch the video, set to Game of Thrones musicGame of Thrones stars' personal phone numbers leaked, as HBO hackers attempt to extort ransomMarkus Ueberall's tweetMovie studio tells all about Dark Overlord's leak of 'Orange Is the New Black'Harvesting Cb Response Data Leaks for fun and profit | DirectDefenseDirectDefense Incorrectly Asserts Architectural Flaw in Cb Response | Carbon Black — Carbon Black responds.Children's Online Privacy Protection Rule ("COPPA") | Federal Trade CommissionParents claim Disney gobbled up kids' info through mobile games • The RegisterAdult Life Skills (2016) - IMDbIntelligence (Canadian TV series) - WikipediaSecrets, Crimes & AudiotapeBBC Radio 4 - Seriously...Smashing Security podcast on FacebookSmashing Security online store

9 Aug 201737min

A security threat researcher is badly hacked in a revenge attack. Some people want to save Adobe Flash, but is that wise? And a poorly-secured electronic billboard starts displaying offensive images...All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Maria Varmazis.Sponsored By:Recorded Future: Recorded Future is the real-time threat intelligence company whose patented machine learning technology continuously analyzes technical, open, and dark web sources to give organizations unmatched insight into emerging threats.Sign up for free daily threat intelligence updates at https://recordedfuture.com/intelSupport Smashing SecurityLinks:Hackers Leak Data From Mandiant Security Researcher in Operation #LeakTheAnalyst — Bleeping Computer.Hackers kick off #leaktheanalyst campaign by dumping data of $1bn security firm — The Next WebLinkedIn profile of a Mandiant employee — Warning - contains image of hairy bottom. This is really here just for Maria.How to choose a strong password - simple tips for better security — YouTube video from 2009, featuring Graham (and filmed by Carole). So, who remembered correctly what we actually said in the video?Smashing Security podcast: Protecting webmail — A Smashing Security splinter.Flash & The Future of Interactive Content — Adobe.Petition to open source Flash and Shockwave — Github.Adobe Flash Fans Want a Chance to Fix Its One Million Bugs Under an Open Source License — Gizmodo.Hackers hijack central Cardiff billboard to display swastikas and more... — Graham Cluley.Hackers plant obscene image on electronic billboard in Atlanta — Graham Cluley.Motorists warned of Dalek invasion by hacked road sign — Naked Security.How to Lock Down TeamViewer for More Secure Remote Access — How-To Geek.Long Distance — Reply All podcast by Gimlet Media.Tickled movie — Wikipedia.Tickled documentary to air on HBO with bonus follow-up special — The A.V. Club.Clock face with actual human face uses eyes to tell time — Mashable.Picture of Carole's clock (which Graham hates) — Twitter.

3 Aug 201744min

China is forcing people to install smartphone spyware, young cyberoffenders are offered rehab, and robot vacuum cleaners want to sell maps of the inside of your house to tech firms.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Dan Ring.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Dan Ring.Sponsored By:Rapid7: Identifying, prioritizing and managing vulnerabilities all the way through to remediation is not only possible, it can be simple. Right now.Build a vulnerability management program that works for you with Insight VM, by Rapid7. Get started with your free 30 day trial now.Support Smashing SecurityLinks:Xinjiang Users Arrested over State Spyware Usage — Infosecurity MagazineChina crams spyware on phones in Muslim-majority province — The Register.Rehab camp aims to put young cyber-crooks on right track — BBC News.Roomba vacuum maker iRobot betting big on the 'smart' home — Reuters.iRobot Wants to Sell Mapping Data Collected by Roomba Vacuums to a Tech Company Like Apple — Mac Rumors.Griffin BreakSafe Magnetic USB C Charging Cable — To make your upgraded MacBook Pro a little less of a downgrade.USB-C MagSafe - Will it work!?!? — iJustine's video on YouTube.Chipotle Blames Norovirus Outbreak on a Sick Employee — Pick of the week?Jim'll Paint It — See what Microsoft Paint can do in the hands of a genius.MS Paint is here to stay — Microsoft.

26 Jul 201737min