We're back from our summer break as we ask how did a cryptomining campaign stay unspotted for years, quiz special guest and infosec rockstar Mikko Hyppönen about his book, and ponder what spiders teach us about misinformation. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault. Warning: This podcast may contain nuts, adult themes, and rude language. Episode links:The 20 Funniest Finnish Expressions (and How To Use Them) - Matador Network.Sophos punts anti-virus for Klingon - The Register.Helsinki named Klingon-speaking capital of the world – Naked Security.Check Point Research detects Crypto Miner malware disguised as Google translate desktop and other legitimate applications - Check Point Research.If It's Smart It's Vulnerable - Book by Mikko Hyppönen.Psychological inoculation improves resilience against misinformation on social media -Science Advances.Let’s flatten the infodemic curve - WHO.The global spread of misinformation on spiders - Current Biology.A Journey Into Misinformation on Social Media - The New York Times.Google Looks to Vaccination to Combat Misinformation In Searches - The New York Times.Spiders Are Caught in a Global Web of Misinformation - The New York Times.The rock-paper-scissors/tortilla wrap game.DEF CON: The Documentary.Smashing Security Painting competition – Carole.wtf.Open Exhibition, Summer 2022 - Oxford Art Society.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:<a href="https://bitwarden.com/smashing/" rel="noopener noreferrer"...

Lost in translation, spiders, and slapping tortillas - with Mikko Hyppönen

A helpful and hilarious take on the week's tech SNAFUs. 

Computer security industry veterans Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy.   It's not your typical cybersecurity podcast...

Winner of the "Best Cybersecurity Podcast" in 2018, 2019, and 2023, and the "Most Entertaining" in 2022 and 2023, Smashing Security has had over nine million downloads. Past guests include Garry Kasparov, Mikko Hyppönen, and Rory Cellan-Jones.

Follow the podcast on Twitter at @smashinsecurity, and subscribe for free in your favourite podcast app. New episodes released at 7pm EST every Wednesday (midnight UK).

Technology

Tech News

Podcasting

Gadgets

Software How-To

Comedy

News

Remember when a US mother was accused of distributing explicit deepfake photos and videos to try to get her teenage daughter's cheerleading rivals kicked off the team? Well, there has been a surprising development.  And learn how cybercriminals have been stealing boomers' one-time-passcodes via a secretive online service. All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault. Warning: This podcast may contain nuts, adult themes, and rude language. Episode links:‘Got that boomer!’: How cybercriminals steal one-time passcodes for SIM swap attacks and raiding bank accounts - TechCrunch.Cheerleader's mom created deepfake videos to allegedly harass her daughter's rivals - ABC News.Bucks County mom doctored videos to harass girls on daughter's cheerleading sqaud, prosecutors say - Philly Voice.Spone v. Reiss, Civil Action 23-0147 - Casetext.Mother 'used deepfake to frame cheerleading rivals' - BBC News.She was accused of faking an incriminating video of teenage cheerleaders. She was arrested, outcast and condemned. The problem? Nothing was fake after all - The Guardian.Parkrun - Wikipedia.Parkrun UK.Oxfordshire Artweeks 2024 - Artweeks homepage. Carole’s art website - carole.wtfSmashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:Kiteworks – Step into the future of secure managed file transfer with Kiteworks.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 20% off!Kolide – Kolide ensures that if your device isn’t secure it can’t access your cloud apps. It’s Device Trust for Okta. Watch the demo today!
SUPPORT THE SHOW: Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser. Become a...

The fake deepfake, and Estate insecurity

The kingpin of the LockBit ransomware is named and sanctioned, a cybersecurity consultant is charged with a $1.5 million extortion, and a romance fraudster stole £80,000 from women he met on Tinder. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by “Ransomware Sommelier” Allan Liska. Warning: This podcast may contain nuts, adult themes, and rude language. Episode links:Former Cybersecurity Consultant Arrested For $1.5 Million Extortion Scheme Against IT Company - US Department of Justice.United States vs Vincent Cannady (PDF) - US Department of Justice.LockBit leader unmasked and sanctioned - NCA.Romance fraudster defrauded women of £80,000 - BBC News.15 of the Most Trustworthy Accents in the UK Revealed - Country Living.Omoton phone car mount - Omoton.Stories are weapons by Annalee Newitz - WW Norton.All the Beauty in the World: A Museum Guard's Adventures in Life, Loss and Art by Patrick Bringley - Penguin.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:Kiteworks – Step into the future of secure managed file transfer with Kiteworks.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 20% off!Kolide – Kolide ensures that if your device isn’t secure it can’t access your cloud apps. It’s Device Trust for Okta. Watch the demo today!
SUPPORT THE SHOW: Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser. Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed! 
 ﻿FOLLOW US: Follow us on Twitter at @SmashinSecurity, or <a href="https://www.smashingsecurity.com/mastodon" rel="noopener noreferrer"...

Unmasking LockBitsupp, company extortion, and a Tinder fraudster

The UK Government takes aim at IoT devices shipping with weak or default passwords, a man spends two years incarcerated after being mistaken for the person who stole his identity, and are you au fait with the latest scams? All this and much more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin. Warning: This podcast may contain nuts, adult themes, and rude language. Episode links:New laws to protect consumers from cyber criminals come into force in the UK - UK Government.Mirai - Wikipedia.Identity theft victim wrongly locked up for 2 years is exonerated at last - Paul Ducklin.Amount of fraud in UK more than doubled to £2.3bn in 2023, report finds - The Guardian.5 scams you need to know about in 2024 - Which? News.How fraudsters are getting fake articles onto Facebook - BBC News.Five Scams To Beware In 2024 - Forbes Advisor UK.Eerie ‘breathing’ mistake to listen out for exposes costly AI ‘audio deepfake' scam calls that take just seconds to make - The Sun.How to spot fraud - UK Government.Etymology Monday: David Crystal on the word ‘gaggle’ - Literary Minded.Moon - Wikipedia.Baby Reindeer - Netflix.Why row over Baby Reindeer sleuths will change real-life drama for ever - The Guardian.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:Sonrai’s Cloud Permissions Firewall – A one-click solution to least privilege without disrupting DevOps. Start a 14 day free trial now!Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 20% off!<a href="https://www.kolide.com/smashing" rel="noopener...

The closed loop conundrum, default passwords, and Baby Reindeer

Leicester City Council suffers a crippling ransomware attack, and a massive data breach, but is it out of the dark yet? And as election fever hits India we take a close eye at deepfakery. All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault. Warning: This podcast may contain nuts, adult themes, and rude language. Episode links:When a breach goes from 25 documents to 1.3 terabytes… - Graham Cluley.Leicester street lights stuck on all day due to cyber attack - Leicester Mercury.Top AI researchers race to detect ‘deepfake’ videos: ‘We are outgunned - Washington Post.AI deepfakes threaten to upend global elections. No one can stop them - Washington Post.Models, dead netas, campaigning from jail: How AI is shaping Lok Sabha polls - India Today.Why Elections Take So Long in India - The New York Times.How A.I. Tools Could Change India’s Elections  - The New York Times.Bollywood deepfakes fuel AI election meddling fears in India - GG2.World Explained: How India's politicians are using AI to reach voters in the world’s most populous country - The Scotsman.12 Angry Men - Wikipedia.VIA Rail.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:Sonrai's Cloud Permissions Firewall - A one-click solution to least privilege without disrupting DevOps. Start a 14 day free trial now!Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 20% off!Kolide – Kolide ensures that if your device isn’t secure it can’t access your cloud apps. It’s Device Trust for Okta. Watch the demo today!
SUPPORT THE SHOW: Tell your...

Keeping the lights on after a ransomware attack

Take That's Gary Barlow chats up a pizza-slinging granny from Essex via Facebook, or does he?  And a scam takes a sinister turn - for both the person being scammed and an innocent participant - in Ohio. All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault. Warning: This podcast may contain nuts, adult themes, and rude language. Episode links:Animal Crossing with Garry Kasparov - Smashing Security.Gary Barlow - Wikipedia.I was catfished by a fake Gary Barlow on Facebook - Daily Mail.Video shows Clark County man charged with murder confront Uber driver - Springfield News.Uber driver, 61, shot dead by Ohio man, 81, who was being targeted by scammers - Daily Mail.Boxfit classes - Better.Waschii - PocketSized SolarHeated Washjing Machine - Indiegogo.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
Sponsored by:Kiteworks – Step into the future of secure managed file transfer with Kiteworks.Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 20% off!Kolide – Kolide ensures that if your device isn’t secure it can’t access your cloud apps. It’s Device Trust for Okta. Watch the demo today!
SUPPORT THE SHOW: Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser. Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed! 
 ﻿FOLLOW US: Follow us on Twitter at @SmashinSecurity, or Mastodon, or on the Smashing Security subreddit, and <a href="https://www.smashingsecurity.com/" rel="noopener noreferrer"...

Lost in translation, spiders, and slapping tortillas - with Mikko Hyppönen

Download our free app to listen on your phone