Graham explores how the Elusive Comet cybercrime gang are using a sneaky trick of stealing your cryptocurrency via an innocent-appearing Zoom call, and Carole goes under the covers to explore the extraordinary lengths bio-hacking millionaire Bryan Johnson is attempting to extend his life.

All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.

Warning: This podcast may contain nuts, adult themes, and rude language.

Episode links:

• Elusive Comet advisory - Security Alliance.
• Mitigating Elusive Comet Zoom remote control attacks - Trail of Bits.
• Aureon Capital: The Fake VCs who Almost Hacked Me - David Z Morris.
• Requesting or giving Remote Control - Zoom knowledgebase article.
• Has Bryan Johnson’s anti-aging experiment backfired? Biohacker spending $2 million-a-year admits to a costly misstep - Economic Times.
• How Blueprint Founder Bryan Johnson Sought Control Via Confidentiality Agreements - The New York Times.
• Anti-aging mogul Bryan Johnson claims NY Times preparing ‘hit piece’ about alleged use of prostitutes, drugs - NY Post.
• KOReader - document reader for E Ink devices.
• Killing Thatcher: The IRA, the Manhunt and the Long War on the Crown - Bookshop.org.
• The Urge - Our history of addiction by Carl Erik Fisher.
• Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

Sponsored by:

• Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!
• 1Password Extended Access Management – Secure every sign-in for every app on every device.

SUPPORT THE SHOW:

Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.

Become a supporter via

A cybersecurity firm is buying access to underground crime forums to gather intelligence. Does that seem daft to you?

And over in Nigeria, even if romance scammers would like to update their LinkedIn profiles, just how easy is it to turn a new leaf after a sweet-talking career in cybercrime?

All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.

Warning: This podcast may contain nuts, adult themes, and rude language.

Episode links:

• Sell your forum accounts - PRODAFT.
• International Scammers Steal Over $1 Trillion in 12 Months in Global State of Scams Report 2024 - Gasa.org.
• Why Nigeria's internet scammers are 'role models' - BBC News.
• 28-year-old fraudster surrenders to EFCC, confesses to romance scams - Punch Newspapers.
• Black Box - BBC iPlayer.
• Black Box trailer - YouTube.
• Katherine Ryan Battleaxe Tour - LW Theatres.
• Louis Theroux Interviews - Series 1: 5. Katherine Ryan - BBC iPlayer.
• Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

Sponsored by:

• Dashlane - Protect against the #1 cause of data breaches - poor password habits. Save 25% off a new business plan, or 35% off a personal Premium plan!
• Drata - The world’s most advanced Trust Management platform – making risk and compliance management accessible, continuous, and 10x more automated than ever before.
• Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!

SUPPORT THE SHOW:

Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.

Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!

FOLLOW US:

Follow us on Bluesky or

QR codes are being weaponised by scammers — so maybe think twice before scanning that parking meter. And in a blunder so dumb it makes autocorrect look smart, the White House explains how it leaked war plans on Signal because an iPhone mistook a journalist for a government insider.

Plus! Don't miss our featured interview with Josh Donelson of Material and Tony Albano from Google, about detection and response in today's AI-driven world.

All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.

Warning: This podcast may contain nuts, adult themes, and rude language.

Episode links:

• The Trump Administration Accidentally Texted Me Its War Plans - The Atlantic.
• Here Are the Attack Plans That Trump’s Advisers Shared on Signal - The Atlantic.
• How the Atlantic’s Jeffrey Goldberg got added to the White House Signal group chat - The Guardian.
• From convenience to compromise: The rising threat of quishing scams - Fast Company.
• Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware - Hacker News.
• QR Code Statistics 2024: Trends & Use Cases - QR Code.
• Honey Garlic Scallop Kabobs - Heinz.
• With QR Code Redemption Set to Surge to 5.3 Billion in 2025, Cybercriminals will Increase Their Quishing Attacks - Wealth & Finance International.
• Chess Masters: The End Game - BBC iPlayer.
• Cribbage Classic - iOS app store.
• Smashing Security merchandise (t-shirts, mugs, stickers and stuff)

Sponsored by:

• Material - Email security that covers the full threat landscape – stopping new flavors of phishing and pretexting attacks in their tracks, while also protecting accounts and data from exploit or exposure.
• Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get $1000 off!
• 1Password Extended Access Management – Secure every sign-in for every app on every device.

SUPPORT THE...