Smashing Security

Fitness trackers breaching your privacy, how anyone can create convincing celebrity porn, and how ransomware authors are getting ripped off by scammers.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest Maria Varmazis.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Maria Varmazis.Sponsored By:Chess CyberSecurity: Chess CyberSecurity is taking the pulse of the IT nation. Complete their three-minute quiz and you could win amazing prizes - including limited edition t-shirts, wireless headphones, an iPad Pro and a Sony PS4.Support Smashing SecurityLinks:Strava's Global HeatmapNathan Ruser tweets about Strava's global heatmapPrivacy of fitness tracking apps in the spotlight after soldiers' exercise routes shared onlineThar she blows: Strava heat map shows folk on shipwreck packed with 1,500 tonnes of bombsAdvanced Deanonymization through StravaFake celebrity porn is blowing up on Reddit, thanks to artificial intelligenceReddit User Outperforms Disney with AI-Generated Princess LeiaFake News Is About to Get Even Scarier than You Ever DreamedJosh Turner of The Other Favorites - YouTubeThe Levee by The Other Favorites - YouTubeBlood on the Tracks by Bob DylanUnited denies woman's attempt to bring peacock onto flightDexter The Peacock on InstagramReforestation Drones Can Plant 100K Trees In An HourSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Your Tinder swipes can be spied upon, Amazon is opening high street stores that don't require any staff, and Russian fuel pumps are being infected with malware in an elaborate scheme to make large amounts of money.With Carole on a top secret special assignment, it's left to security veteran Graham Cluley to discuss all this and much much more with special guests David McClelland and Vanja Švajcer.Follow the "Smashing Security" podcast on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guests: David McClelland and Vanja Švajcer.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.CloudBerry Lab: Backup files, folders and system images to the cloud storage of your choice - with built-in 256 bit encryption ensuring your precious data remains private.Support Smashing SecurityLinks:Tinder's Lack of Encryption Lets Strangers Spy on Your SwipesTinder drift demo - YouTubeUsing public Wi-Fi - a Smashing Security splinterWatchdog Wednesday: WiFi hackers - BBCApple drops requirement for apps to use HTTPS by 2017Amazon Go debuts, and its prying cameras foil our shoplifting attemptsHacker Infects Gas Pumps with Code to Cheat CustomersMaking Blake's Seven 101 - YouTubeJon Alpert Speaks On His Film, "Cuba and the Cameraman" - YouTubeReview: ‘Cuba and the Cameraman’ Lavishes Love on a Country … and CastroCARROT Weather on the iOS App StoreSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

User interfaces and poor procedures lead to pandemonium in Hawaii, hackers are attempting to trick victims into opening cryptocurrency-related email attachments, and yet more pox-ridden apps are found in Android's Google Play store.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Paul Ducklin.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Paul Ducklin.Sponsored By:LastPass: LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.CloudBerry Lab: Backup files, folders and system images to the cloud storage of your choice - with built-in 256 bit encryption ensuring your precious data remains private.Support Smashing SecurityLinks:Hawaii's ballistic missile false alarm and a user interface failureHawaii missile alert: How one employee ‘pushed the wrong button’ and caused a wave of panicWhat Hawaii Was Like After the False Nuclear AlarmCryptocurrency as the lure, an ISO as the attachment – why not open it?Malware Displaying Porn Ads Discovered in Game Apps on Google PlayGames with pornographic ads sneak into the Play Store, get 3 million downloadsFake WhatsApp app tricked over a million users@ruanyf on Twitter's picture of a visual display for a Chinese lavatoryPolice give out infected USBs as prizes in cybersecurity quizIBM distributes USB malware cocktail at AusCERT security conferenceIBM has been shipping malware-infected USB sticksOlympus Stylus Tough camera carries malware infectionGoogle Arts and Culture app: How to find which famous painting you look like – and why people don't want to Google Arts & CultureSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

The chips are down, as tech companies struggle to protect against the Meltdown and Spectre flaws. The White House is getting tough on leakers by banning personal devices from the West Wing. And someone has been embedding a Bitcoin wallet into their hand...All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist and broadcaster David McClelland.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: David McClelland.Sponsored By:CloudBerry Lab: Backup files, folders and system images to the cloud storage of your choice - with built-in 256 bit encryption ensuring your precious data remains private.Support Smashing SecurityLinks:Apple fixes the Meltdown and Spectre flaws in Macs, iPhones, and iPadsSpectre? Meltdown? F*CKWIT? Calm down and make yourself some teaUntil your anti-virus adds this Registry key, you aren't getting any more Windows security updatesImportant information about Microsoft Meltdown CPU security fixes, antivirus vendors and youOuch! Microsoft's Meltdown and Spectre security update bricks some AMD-powered PCsRipple soars, becomes second-biggest cryptocurrency by market capBICHIPWould you store Ripple and Bitcoin in 'mark of the beast' microchip?Biohacker Summit 2017 – Uniting Technology & NatureMeet the first humans to sense where north is White House bans use of personal devices from West Wing“Fire and Fury” Is a Book All Too Worthy of the President Portal Knights - The award-winning sandbox action-RPG adventure gamePortal Knights trailer for Nintendo Switch - YouTubeFocus - Productivity Timer on the App StoreCasefile: True Crime PodcastSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

In this special "splinter" episode of the "Smashing Security" podcast we take a look at Bitcoin and Blockchain. What's all the fuss about cryptocurrencies? How can you protect your Bitcoin wallet? And how does the Blockchain work?Lots of questions, and Graham offers to sell his family.Listen to the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Peter Ullrich of the "Explain Blockchain" podcast.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Peter Ullrich.Support Smashing SecurityLinks:Bitcoin Resources from Jameson LoppMastering Bitcoin book by Andreas AntonopoulosExplain Bitcoin Like I’m FiveBitcoin ExchangesSilk Road's Ross Ulbricht sentenced to life in prison, without paroleBitcoin Energy Consumption IndexJaxx mobile cryptocurrency walletTrezor hardware Bitcoin wallet"Explain Blockchain" podcastSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Is Face ID racist? Has Mr Robot infected your Firefox browser? Has Microsoft pushed a buggy password manager onto your Windows PC?All this and much much more is discussed in the special first birthday edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by original co-host Vanja Švajcer.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Vanja Švajcer.Sponsored By:OneLogin: OneLogin provides Single Sign On for customers like Airbus, Royal Mail, BSI, and Dun and Bradstreet. With hundreds of apps being used in the typical workplace, and the average user having to remember about 40 different passwords, we all know that if we don't have a product to remember passwords they end up in spreadsheets, stored in emails, or left on post-it notes. And that is a security nightmare. OneLogin allows IT to say which users have access to which applications at what time and also enforce two factor authentication. So even if credentials are compromised, hackers can’t get access to those corporate services. And, by connecting to Active Directory, access to all of these services is de-provisioned as soon as someone leaves the organisation.Learn more, and download a free guide to identity access management, at www.smashingsecurity.com/oneloginSupport Smashing SecurityLinks:Smashing Security #001: "One cup, two hotel guests" - YouTubeMozilla Slipped a ‘Mr. Robot’-Promo Plugin into Firefox and Users Are PissedThis Looking Glass/Mr Robot sh*t really p*sses me off - RedditUnknown Mozilla dev addon "Looking Glass 1.0.3" on browser... or is it just malware? - Firefox Support ForumUpdate: Looking Glass Add-onBono and Tim Cook - YouTubeHow to remove Bono and U2 from YOUR f*#!ing iPhone - YouTubeFor 8 days Windows bundled a password manager with a critical plugin flaw Disabling Windows 10 Consumer ExperienceHow Windows 10 Pro installs unwanted apps (Candy Crush) and how to stop it Troy Hunt explains why Face ID Stinks - YouTube10-year-old kid succeeds in unlocking his mum’s iPhone X, with just a glance Apple's Face ID tech can't tell two Chinese women apartFirst iPhone X fondlers struggle to admit that Face ID sort of sucks Erase 2017 from your brain. Face ID never happened. The Notch is an illusion How I Learned to Deal with My Bitcoin FOMOBitcoin FOMO CalculatorOh, My Coins! - Database Of Lost Crypto AssetsMissing: hard drive containing Bitcoins worth £4m in Newport landfill siteIs Bulgaria sitting on $3.5 BILLION worth of Bitcoin seized from criminals?WeCroak on the App StoreNose Dance! The Original Nose Twerking Miss Santa Face Paint! - YouTubeChristmas Nose Twerk! Grinch & Max! - YouTubeSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

How to protect yourself from Bitcoin hackers, why you should think twice before giving Amazon the keys to your house, and how a private investigator tried to hack Donald Trump's tax returns.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mikko Hyppönen from F-Secure.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Mikko Hyppönen.Sponsored By:OneLogin: OneLogin provides Single Sign On for customers like Airbus, Royal Mail, BSI, and Dun and Bradstreet. With hundreds of apps being used in the typical workplace, and the average user having to remember about 40 different passwords, we all know that if we don't have a product to remember passwords they end up in spreadsheets, stored in emails, or left on post-it notes. And that is a security nightmare. OneLogin allows IT to say which users have access to which applications at what time and also enforce two factor authentication. So even if credentials are compromised, hackers can’t get access to those corporate services. And, by connecting to Active Directory, access to all of these services is de-provisioned as soon as someone leaves the organisation.Learn more, and download a free guide to identity access management, at www.smashingsecurity.com/oneloginNetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:Mikko Hypponen has his ponytail hair cut. - YouTubeCyber Security Sauna podcastLouisiana man admits misusing Trump's Social Security numberOne of Your Equifax Hack Protections Expires SoonHow to protect yourself in the wake of the Equifax data breachLarry Flynt offers $10 million for info that could get Trump impeachedCryptocurrency Market CapitalizationsPhysical Bitcoins from DenariumTREZOR Bitcoin WalletLedger WalletAmazon drivers forced to deliver 200 parcels a day with no time for toilet breaks while earning less than minimum wageAmazon wants a key to your house. I did it. I regretted itBlack Friday Delivery THIEVES: 1 in 5 UK packages missing as thefts SURGE before ChristmasCode.orgThe Arcade BloggerThe Happiness of the Katakuris'Rare Exports: A Christmas Tale' Trailer - YouTubeSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Why you should check your Airbnb for hidden cameras, a hacker attempts a different kind of jailbreak, and British MPs prove that they really are clueless when it comes to cybersecurity.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest Ian Whalley.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Ian Whalley.Sponsored By:OneLogin: OneLogin provides Single Sign On for customers like Airbus, Royal Mail, BSI, and Dun and Bradstreet. With hundreds of apps being used in the typical workplace, and the average user having to remember about 40 different passwords, we all know that if we don't have a product to remember passwords they end up in spreadsheets, stored in emails, or left on post-it notes. And that is a security nightmare. OneLogin allows IT to say which users have access to which applications at what time and also enforce two factor authentication. So even if credentials are compromised, hackers can’t get access to those corporate services. And, by connecting to Active Directory, access to all of these services is de-provisioned as soon as someone leaves the organisation.Learn more, and download a free guide to identity access management, at www.smashingsecurity.com/oneloginNetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:The lax computer security of British MPs - as detailed in their own tweetsNadine Dorries MP tweets about sharing her passwordHackers attempt to break into UK MPs' email accounts, as Houses of Parliament targeted by cyber attackNow criminals are ringing up British MPs to ask them their passwordsNadine Dorries MP admits she's always shouting out "What's my password?"Will Quince MP admits he leaves his PC unlockedNadine Dorries reveals all MPs have porn on their PCsAnn Arbor Man Pleads Guilty to Computer Intrusion CaseMan Hacks Jail Computer Network to Get Friend Released EarlyPrison hacker who tried to free friend now likely to join him insideCourt documents (PDF)Tweet from Jason ScottSmile, you’re on hidden webcam Airbnb TV!What are Airbnb’s rules about electronic surveillance devices in listings?Colorise Bot (@colorisebot) on TwitterThe science behind @ColorisebotThe LeftoversLittle Alchemy 2Smashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Uber covers up a data breach, the noose tightens on net neutrality, and Bulletproof's website spills the data beans.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by umm.. nobody because they didn't arrange a special guest.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Sponsored By:NetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:Uber paid hackers $100,000 to keep data breach quietBulletproof breach notification letter to customers (PDF)Bulletproof Coffee lacks bulletproof security: Nerd brain juice biz hacked, cards gulpedNet Neutrality: What You Need to Know NowRacist, threatening attacks on FCC Chair Ajit Pai won't save net neutralityAmericans are spending Thanksgiving fighting for net neutralityAn update on the fight for the free and open internetGoogle YouTube Keyboard ShortcutsTom Baker returns to finish shelved Doctor Who episodes penned by Douglas AdamsBitcoin: How Does it Work? (Roger Ver Interview)Smashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Yes, you can log into macOS High Sierra's root account with no password.In this special "emergency" edition of the podcast computer security veterans Graham Cluley and Carole Theriault discuss the breaking news of a serious Apple macOS bug that allows anyone to log into your Mac with root admin rights, without having to enter a password.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Support Smashing SecurityLinks:Tweet by Lemi ErginHuge MacOS bug lets anyone login as root without a password: what you need to knowHow to enable the root user on your Mac or change your root password - Apple SupportSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)