Smashing Security

The FBI think they've identified the HBO hacker, the US military have been caught with a leaky bucket, and web tracking has just got scarier than ever.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Register's Iain Thomson.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Iain Thomson.Support Smashing SecurityLinks:Uber paid hackers $100,000 to keep data breach quiet HBO offered its hackers $250,000 after attack, leaked email claimsGame of Thrones stars’ personal phone numbers leaked, as HBO hackers attempt to extort ransomSmashing Security 037: Boobs, dragons and data breachesIranian ‘Game of Thrones’ Hacker Demanded $6 Million Bitcoin Ransom From HBO, Feds SaySealed IndictmentOver 400 of the World's Most Popular Websites Record Your Every Keystroke, Princeton Researchers FindNo boundaries: Exfiltration of personal data by session-replay scriptsData release: list of websites that have third-party “session replay” scriptsThe dark side of Replay Sessions that record your every move onlineShark Attack 3 - That Famous Line (NSFW!)Father Ted: Dougal the Milkman & the Booby TrapPaddington 2 - the moviePaddington Bear, Singin' in the rainBaby Driver - the movieBaby Driver - 6-Minute Opening ClipMathmos Lava LampsTom Scott's How Lava Lamps Keep the Internet SecureSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Is your dildo listening to you? Do you trust Facebook with your most intimate photos? And just how did a vengeful DDoSer come up with that nickname?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest John Hawes.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: John Hawes.Sponsored By:NetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:Give Facebook your nude pics to tackle revenge pornThe Facts: Non-Consensual Intimate Image PilotUsing Technology to Protect Intimate Images and Help Build a Safe CommunitySex toy company admits to recording users' remote sex sessions, calls it a 'minor bug'PSA: Lovense remote control vibrator app recording "private" sessions without express permissionHack a BT Low Energy (BLE) butt plugMan Uses DDoS-for-Hire Services to Attack Former Employer, Taunts Firm via EmailGoogle's Inactive Account ManagerLee Valley Tools - Woodworking Tools, Gardening Tools, HardwareSnap CircuitsWhat is Snap Circuits? - YouTubeSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Passwords are under the microscope again, CrunchyRoll leads anime fans to malware, a sexy robot gains Saudi citizenship, and Carole begins her career as an agony aunt.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest Maria Varmazis.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Maria Varmazis.Sponsored By:NetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:LastPass reveals the threats posed by passwords in the workplaceOne in five security professionals still uses paper to manage privileged passwordsPasswords - a Smashing Security splinterPSA : Don't enter crunchyroll.com at the moment, it seems they've been hackedBlaze's Security Blog: CrunchyRoll hack delivers malwareCrunchyroll.com updateMeet Sophia: The first robot declared a citizen by Saudi Arabia - YouTubeHot Robot At SXSW Says She Wants To Destroy HumansSaudi Arabia has a new citizen: Sophia the robot. But what does that even mean?Japan Has Just Granted Residency To An AI Bot In A World FirstMythbuster seeks cash for roller skates to wear in virtual realityJamie Hyneman's Electric Shoes - YouTubeSwear Trek (@swear_trek) on TwitterSwear Who (@swear_who) on TwitterStranger Things: The Game on the iOS App StoreStranger Things: The Game on Google PlaySmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

There's little time to celebrate our 50th episode, because there are rants to be had about MailChimp's switch to single opt-in, Graham upsets Piers Morgan on Twitter, and the Dark Overlord hacking gang are up to some pretty horrid tricks.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, who didn't bother to organise a special guest this week.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Sponsored By:NetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Enterskekt: Entersekt develops authentication and mobile security solutions that make the internet a safer place to bank and shop. Join Entersekt's webinar which promises to tell you EVERYTHING you need to know about "The secret key to PSD2 compliance" by visiting https://www.smashingsecurity.com/entersektSupport Smashing SecurityLinks:Graham declines to appear on Good Morning BritainPiers Morgan responds to GrahamPiers Morgan tells Leveson: Daily Mirror did not hack phonesPiers Morgan told me how to hack a phone, says Jeremy PaxmanDaily Mirror owners must pay £1.2m to celebrity phone-hacking victimsWendi Deng protects Rupert Murdoch from custard pieI can no longer recommend MailChimp Mailchimp backtracks on all their recommendations, enforcing single opt-inMassive email bombs target government email addresses Smashing Security: GDPR - The good and the badAnother Hollywood studio is hacked by The Dark OverlordHackers hit plastic surgery, threaten to release patient list and photographs‘Dark Overlord’ Hackers Text Death Threats to Students, Then Dump Voicemails From Victims"Saved you a click" on RedditGoogle CEO to fix burger emoji after heated debate cooks up on Twitter"Get Me Roger Stone"Pencil GripIgnite Elite - Rechargeable USB Flameless LighterSmashing Security: Bonus behind the scenes - shower timeSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Scammers show a lack of imagination after hacking a funeral home, more websites are secretly stealing visitors' resources to mine for cryptocurrency, and everyone is very confused about the USA's airline laptop ban.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Register's John Leyden.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: John Leyden.Sponsored By:Enterskekt: Entersekt develops authentication and mobile security solutions that make the internet a safer place to bank and shop. Join Entersekt's webinar which promises to tell you EVERYTHING you need to know about "The secret key to PSD2 compliance" by visiting https://www.smashingsecurity.com/entersektNetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:Local funeral home gets hacked in the middle of the night leaving employees without accessLocal business' Yahoo! account hackedSmashing Security: 014: Protecting webmailStealth web crypto-cash miner Coin Hive back to the drawing board as blockers move in - The RegisterCryptocurrency mining affects over 500 million people. And they have no idea it is happening.Laptops and tablets have been banned from being used on 56 routes to the USLaptop ban: How it works, what devices are forbidden on flightsQuestions and answers on proposed ban on laptops in luggage - The Washington PostInspire Candle - Twelve SouthBBC Two - The Detectives: Murder on the StreetsThis Chrome extension blocks audio and video autoplay on any websiteAutoplay blocking is coming to ChromeSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

KRACK! Has the Wi-Fi vulnerability got you worried? Did North Korea hack a British TV company to prevent a "slanderous farce" from being made? And what have Dutch police learnt from Pokémon?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Virus Bulletin's Martijn Grooten.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Martijn Grooten.Sponsored By:NetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:UK TV drama about North Korea hit by cyber-attack - BBC NewsThe World Once Laughed at North Korean Cyberpower. No More. - The New York TimesNaked Attraction: Channel 4 show returns and viewers observe 'missing detail' on female contestants | The Independent'Krack' wi-fi breach means every modern network and device is vulnerable to hack, researcher says - The IndependentKRACK Attacks: Breaking WPA2KRACK Wi-Fi attack - the rules haven't changedPolicing in the future uses citizen detectives, Pokémon Go-like appPolitiepokémon op komst - Telegraaf.nlBlokus - WikipediaBlokee - Inspired by Blokus - Online Board GameThe crooked timber of humanity - 1843 MagazineThe Victorian Internet - tomstandage.comWatch 100 people try to eat durian, a fruit that smells like hot garbageSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

America turns the heat up on Kaspersky anti-virus, Disqus announces a data breach, Elon Musk plans a bolthole on Mars to escape our robot overlords, and Graham gets to play chess with Garry Kasparov.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist and broadcaster David McClelland.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: David McClelland.Sponsored By:NetSparker: NetSparker is a web application security scanner that can automatically find security flaws in your website and fix them before hackers can exploit them. If you want to automatically check your web applications for cross site scripting, SQL Injection & other vulnerabilities and coding errors that can leave you and your business exposed to malicious hacker attacks, then you need NetSparker.Download a free demo now.Support Smashing SecurityLinks:Altered Images - Happy BirthdayGraham met Garry KasparovGraham about to lose a game of chess to Garry KasparovSign in Office Depot store (via @gadievron on Twitter)Kaspersky accused of close ties to sauna-loving Russian spiesRussian Hackers Stole NSA Data on U.S. Cyber Defense - WSJWhat is Kaspersky's role in NSA data theft? Here are three likely outcomes - ZDNetEugene Kaspersky says U.S. government can examine his company's source codeMcAfee joins the anti-Kaspersky witch hunt in shitty attempt to sell a few boxesDisqus security alert: User info breachDisqus reveals data breach, but wins points for transparency – HOTforSecurityIt's 4PM on Friday, almost time to log off and, oh look, Disqus says it's been hacked - The RegisterA World Leader in AI Just Established an Ethics Committee for Artificial IntelligenceThe Artificial Intelligence Revolution: Part 1 - Wait But WhyOpen Letter on Autonomous Weapons - Future of Life InstituteSam Harris: Can we build AI without losing control over it? - TED TalkElon Musk’s Billion-Dollar Crusade to Stop the A.I. Apocalypse - Vanity FairArtificial Intelligence Is Our Future. But Will It Save Or Destroy Humanity?Artificial Intelligence - Internet Encyclopedia of PhilosophyGoogle's AI Chief Is 'Definitely Not Worried About the AI ApocalypseElon Musk is wrong. The AI singularity won't kill us all Robots - Flight of the Conchords"SEAGULLS! (Stop It Now)" -- A Bad Lip Reading of The Empire Strikes Back - YouTubeDavid Stranack's post on the Smashing Security Facebook groupTimeScapes by Nigel StanfordCYMATICS: Science Vs. Music - Nigel StanfordAUTOMATICA - Nigel StanfordAutomatica Robot testsComrade Detective - WikipediaSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Bearded man entangled in dark web drugs market bust, Google researches how to make browser security warnings less confusing, and (ahem) "bedroom entertainment systems" probed for security holes.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Rich Baldry.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Rich Baldry.Support Smashing SecurityLinks:Feds catch a lord of the 'dark web' suspected of drug deals - Miami HeraldTrip to world beard competition ends in arrest for alleged dark web drug dealer - The GuardianAustin Facial Hair ClubThe World Beard and Moustache ChampionshipsGlorious Portraits from the 2017 World Beard And Mustache ChampionshipWhere the wild warnings are: Root causes of Chrome HTTPS certificate errors [PDF]Screwdriving. Locating and exploiting smart adult toys - Pen Test PartnersWi-Fi sex toy with built-in camera fails penetration test - The Register ForumsTopo by ErgodrivenDirk Gently's Holistic Detective Agency - IMDbDead roach in Utah man’s milkshake becomes Twitter hero - KSL.comTrevor The Roach: A Tribute MovieSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Deloitte suffers an embarrassing hack, CCleaner spreads malware, and Twitter explains why it isn't planning to ban Donald Trump from Twitter anytime soon.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Phil Wood of Cisco.Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Special Guest: Phil Wood.Sponsored By:Recorded Future: Recorded Future is the real-time threat intelligence company whose patented machine learning technology continuously analyzes technical, open, and dark web sources to give organizations unmatched insight into emerging threats.Sign up for free daily threat intelligence updates at https://recordedfuture.com/intelSupport Smashing SecurityLinks:Graham Cluley on Twitter: "Turns out I slept in a cheesegrater last night"Deloitte hit by cyber-attack revealing clients’ secret emails - The GuardianSource: Deloitte Breach Affected All Company Email, Admin Accounts — Krebs on SecurityDeloitte is a sitting duck: Key systems with RDP open, VPN and proxy 'login details leaked' • The RegisterCCleanup: A Vast Number of Machines at Risk - Talos Intelligence blogCCleaner Command and Control Causes Concern - Talos IntelligenceNorth Korean Minister: Trump's 'Declaration Of War' Means N.K. Can Shoot Down U.S. Bombers - NPRTwitter PublicPolicy on TwitterThe Twitter Rules - Twitter Help CenterWildergorn colour-in postersStar Trek: Discovery - CBSRick and Morty - WikipediaSmashing Security on FacebookSmashing Security merchandise (t-shirts, mugs, stickers and stuff)

Carole wants to know why Graham keeps FaceTiming her from the shower.Can you help solve the mystery?("Bonus" behind-the-scenes content.)Follow the show on Twitter at @SmashinSecurity, or visit our website for more episodes.Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!Warning: This podcast may contain nuts, adult themes, and rude language.Support Smashing Security