016: Wonga wronga!

With Graham incapacitated, we drag an episode out from the archives. In this special "splinter" episode of the "Smashing Security" podcast from September 2017 we tackle the tricky subject of backups - When did you last backup your data? How and what should you backup? And where should you store them?Lots of questions and Graham gets to do his Tina Turner impression.All this and more is discussed in this edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.MetaCompliance: People are the key to minimizing your Cyber Security risk posture. MetaCompliance makes this easier by providing a single platform for Phishing, Cybersecurity training, Policy, Privacy and Incident management.Go to smashingsecurity.com/metacompliance Promo Code: SMASHINGSupport Smashing SecurityLinks:Tina Turner - Private Dancer — YouTube.The Baranton Sisters foot juggling tables — YouTube.How to create a robust data backup plan (and make sure it works)How to back up your iPhone, iPad, and iPod touch — Apple Support.How to back up your Android phone or tablet: The ultimate guide — Android Central.Crashplan stops offering its consumer backup solutionCarbonite cloud backupBackblaze Online BackupMozy Cloud Storage & BackupAmazon GlacierCloudBerry Lab - Cross-Platform Cloud BackupSmashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

10 Apr 201930min

Office Depot and OfficeMax are fined millions for tricking customers into thinking their computers were infected with malware, car alarms can make your vehicle less secure, and facial recognition in apartment blocks comes under the microscope.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner.Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Dave Bittner.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you."The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks.Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Is Office Depot diagnosing non-existent computer problems? — YouTube.Office Depot and Tech Support Firm Will Pay $35 Million to Settle FTC Allegations That They Tricked Consumers into Buying Costly Computer Repair Services — FTC.Alarming vulnerabilities in automotive security systems — The Cyberwire.Gone in six seconds? Exploiting car alarms — Pen Test Partners.The Landlord Wants Facial Recognition in Its Rent-Stabilized Buildings. Why? — New York Times.Brooklyn Landlord Wants To Install Facial Recognition Tech At Rent-Stabilized Complex — Gothamist.New key-less Moscow apartments use facial recognition to open doors and elevators — Achinect.Study finds gender and skin-type bias in commercial artificial-intelligence systems — MIT News.The woman who doesn't feel pain — BBC News.TVR Exploring — YouTube.Lost Dutchman's Gold — BBC Games Archive.Dirty John: The Dirty Truth — Netflix.A Complete Timeline of the Events of Dirty John — Harper's Bazaar.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

3 Apr 201948min

An app leaking private conversations and intimate photographs is ignoring requests to fix the problem, hackers poison a security update sent to ASUS PCs, and how to protect your privacy in motel rooms.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.Follow the show on Twitter at @SmashinSecurity, on the Smashing Security subreddit, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Maria Varmazis.Sponsored By:Mimecast: Grab your FREE Cybersecurity Awareness Training Kit from Mimecast, and share it throughout your company. Give your employees the information they need to make the best cybersecurity decisions.Get your free kit at smashingsecurity.com/mimecastSupport Smashing SecurityLinks:Varmazis.gr - The hot sauce factory.This Spyware Data Leak Is So Bad We Can't Even Tell You About It — Motherboard.A family tracking app was leaking real-time location data — TechCrunch.Popular family tracking app exposed real-time location data onto the internet – no password required — Hot for Security.Hosting Provider Finally Takes Down Spyware Leak of Thousands of Photos and Phone Calls — Motherboard.security.txt | A proposed standard which allows websites to define security policies.Hackers Hijacked ASUS Software Updates to Install Backdoors on Thousands of Computers — Motherboard.Operation ShadowHammer — Kaspersky.Shadow Hammer APT MAC Check.ASUS Settles FTC Charges That Insecure Home Routers and “Cloud” Services Put Consumers’ Privacy At Risk — Federal Trade Commission.ASUSFourceUpdater.exe is trying to do some mystery update, but it won't say what... — Reddit.Asus implements fix for malware attack — Reuters.ASUS response to the recent media reports regarding ASUS Live Update tool attack by Advanced Persistent Threat (APT) groups.Passion for life: Self-expansion and passionate love across the life span — Journal of Social and Personal Relationships.So THAT'S Why Hotel Sex Is So Much Better Than At Home — Huffington Post.South Korea arrests two for spy cameras that livestreamed 1,600 motel guests — Reuters.Zach King magic tricks — YouTube.Killed by Google - The Google Graveyard & Cemetery.Outline - Read & annotate without distractions.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

27 Mars 201947min

Online drug dealers get busted due to poor OPSEC! People are still failing to wipe their USB sticks properly! A potential presidential candidate is outed as a former hacker! Flat Earthers! Pi! Empathy!All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Paul Ducklin.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you."The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks.Download it for free at smashingsecurity.com/intelligenceSupport Smashing SecurityLinks:'It's like Uber, but for weed': Meet the man who revolutionized Israel's pot trade — Haaretz.Israel Police arrest top members of Telegrass online drug ring — Haaretz.Sources: Telegrass head cooperating with police — YNet News.You left WHAT on that USB drive?! — Naked Security.Cult of the Dead Cow — Wikipedia.Back Orifice — Wikipedia.Beto O’Rourke’s secret membership in America’s oldest hacking group — Reuters.Beto O’Rourke acknowledges involvement with hacking group as teen — The Texas Tribune.Behind the Curve.Behind the Curve - Official Release Trailer — YouTube.Serious Security: What we can all learn from PiDay — Naked Security.Drawabox — A free, exercise based approach to learning the fundamentals of drawing.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

20 Mars 201948min

A $150 million mansion is hijacked online, Brits will soon have to scan their passport to watch internet porn, and are organisations right to pay up when hit by ransomware?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology broadcaster David McClelland.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: David McClelland.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Mimecast: Grab your FREE Cybersecurity Awareness Training Kit from Mimecast, and share it throughout your company. Give your employees the information they need to make the best cybersecurity decisions.Get your free kit at smashingsecurity.com/mimecastSupport Smashing SecurityLinks:What Is a Zillow Zestimate? — YouTube.Zillow sued over hacked listing of $150 million California mansion — Chicago Tribune.The Headington Shark, Oxford.UK Digital Economy Act 2017 — Legislation.gov.uk.AgeID | Your Access to the World of Age-Restricted Websites.CleanBrowsing DNS. — Free DNS Parental Control, DNS Filter and Web filter.Ray Charles - Georgia On My Mind — YouTube.Rural Jackson County, Georgia. recovering from ransomware attack — StateScoop.Georgia county pays a whopping $400,000 to get rid of a ransomware infection — ZDNet.Confidential report: Atlanta's cyber attack could hit $17 million — Atlanta Journal-Constitution.EmojiTetra (@EmojiTetra) on Twitter.Emoji Snake Game (@EmojiSnakeGame) on Twitter.The Butterfly Effect — Podcast with Jon Ronson.So You've Been Publicly Shamed — Amazon.com.How old do I look?Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

13 Mars 201954min

Twerking robot assistants, an app from Saudi Arabia that lets men track women, and a gnarly skiing security snarl-up!Oh, and find out how a didgeridoo could change your life and that of your loved ones.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Geoff White.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you."The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks.Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:A Jibo twerking — YouTube.Tweet by Dylan Martin about Jibo — Twitter.After Being Sold to a VC Firm, this $899 IoT Robot Will Soon Brick Itself — Motherboard.Your $350 Nike self-lacing sneakers aren't as smart as you hoped — Graham Cluley.Absher app — Wikipedia.Apple and Google Urged to Dump Saudi App That Lets Men Track Women — New York Times.Hacking ski helmet audio — Pen Test Partners.That's a nice ski speaker you've got there. Shame if it got pwned — The Register.Fleabag is back - and she's found religion — BBC News.Fleabag — BBC iPlayer.Jill Abramson: Ex-New York Times editor accused of plagiarism — BBC News.Password advice. Don't tell people to not reuse passwords. You might get a letter from this guy's solicitors... — Twitter.Moneyland: Why Thieves And Crooks Now Rule The World And How To Take It Back — Amazon.com.Play the Didgeridoo for Sleep Apnea and Snoring Relief — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

6 Mars 201942min

Why is Tampa's mayor tweeting about blowing up the airport? Are hackers trying to connect with you via LinkedIn? And has Maria succeeded in her attempt to survive February without Facebook? All this and much much more in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.Plus, after last week's discussion about the legal battle between Mondelez and Zurich Insurance, we have a chat with security veteran Martin Overton to take a deeper look into cyberinsurance.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guests: Maria Varmazis and Martin Overton.Sponsored By:Mimecast: Grab your FREE Cybersecurity Awareness Training Kit from Mimecast, and share it throughout your company. Give your employees the information they need to make the best cybersecurity decisions.Get your free kit at smashingsecurity.com/mimecastLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:Pornography, racism and threats of missile attack fill Tampa mayor's Twitter feed during hack — WTSP News.How to use the Teams feature on TweetDeck — Twitter.I Blocked Amazon, Facebook, Google, Microsoft, and Apple — Gizmodo.Half Of U.S. Employees Are Actively Searching For A New Job — Forbes.Fake Jobs: Campaigns Delivering More_eggs Backdoor via Fake Job Offers — Proofpoint.Perfect night in — A podcast by Neil Perryman.Tetris® 99 for Nintendo Switch — Nintendo.Every British swear word has been officially ranked in order of offensiveness — The Independent.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

27 Feb 201957min

How would you track someone who owed you money? What was the colossal flaw Facebook left on its website for anyone to exploit and hijack accounts? And what excuse are insurance companies giving for not paying victims of the NotPetya malware millions of dollars?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Joe Carrigan of the Information Security Institute at Johns Hopkins University.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, Castbox, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Theme tune: "Vinyl Memories" by Mikael Manvelyan.Assorted sound effects: AudioBlocks.Special Guest: Joe Carrigan.Sponsored By:Recorded Future: For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you."The Threat Intelligence Handbook" is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation's defence against the latest cyber attacks.Download it for free at smashingsecurity.com/intelligenceLastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.Support Smashing SecurityLinks:In first such case, Chinese police arrest hacker for selling tracking app to debt collectors — Global Times.Ravenous Bugblatter Beast of Traal — Urban Dictionary."I just had to download a software update for my shoes" — Thread from @GK3 on Twitter.Marty McFly Gets Power Laces — YouTube.Nike Adapt BB Self-Lacing Shoe — SneakerNews.Here's Why the Nike Adapt BB Is Worth $350 — YouTube.Facebook CSRF protection bypass which leads to Account Takeover — Samm0uda.Everything you need to know about the Petya, er, NotPetya nasty trashing PCs worldwide — The Register.The Untold Story of NotPetya, the Most Devastating Cyberattack in History — Wired.A Moment of Truth for Cyber Insurance — Lawfare.Manufacturers Remain Slow to Recognize Cybersecurity Risks — New York Times.UK and US blame Russia for 'malicious' NotPetya cyber-attack — BBC News.thispersondoesnotexist.com.This website uses AI to generate faces of people who don't exist — Mashable.ESPN+Trevor Moore: The Story of Our Times - "My Computer Just Became Self Aware" — YouTube.Smashing Security merchandise (t-shirts, mugs, stickers and stuff) Privacy & Opt-Out: https://redcircle.com/privacy

20 Feb 201945min