Coinbase crypto heists, QR codes, and ransomware in the classroom

In episode 403 of "Smashing Security" we dive into the mystery of $65 million vanishing from Coinbase users faster than J-Lo slipped into Graham's DMs, Geoff gives a poor grade for PowerSchool's security, and Carole takes a curious look at QR codes.

All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by The Lazarus Heist's Geoff White.

Warning: This podcast may contain nuts, adult themes, and rude language.

Episode links:

• ZachXBT’s thread - Twitter.
• Coinbase employee tells users not to use a VPN or ad blocker - Twitter.
• What PowerSchool won’t say about its data breach affecting millions of students - TechCrunch.
• QR code - Wikipedia.
• Reed–Solomon error correction - Wikipedia.
• Urgent warning over QR code scam tricking drivers out of £100s at popular car parks - Express.
• Scam alert: QR code on an unexpected package - Consumer Advice
• New Star Blizzard spear-phishing campaign targets WhatsApp accounts - Microsoft Security Blog.
• What You Must Know Before Scanning a QR Code - AARP.
• “More” - Niall Conlon.
• “Money Men” by Dan McCrum - Penguin Books.
• Bitter Orange Marmalade Recipe - Ballymaloe Cooking School.
• Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

Sponsored by:

• Tailscale – Tailscale is perfect for work or personal projects, making networking simple. Its free plan covers up to 100 devices and 3 users. Get started at tailscale.com and be up and running in less than 10 minutes!
• 1Password – Secure every app, device, and identity – even the unmanaged ones at 1password.com/smashing.
• Cortex Symphony 2025 - Ready to transform your cybersecurity? Register now to see the future of security innovation with exclusive insights, demos, and stories from pros.

SUPPORT THE SHOW:

Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.

Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!

FOLLOW US:

Follow us on Bluesky or Mastodon, or on the Smashing Security subreddit, and visit our website for more episodes.

THANKS:

Theme tune: "Vinyl Memories" by Mikael Manvelyan.

Assorted sound effects: AudioBlocks.