Home Podcasts Smashing Security
Smashing Security

Smashing Security

Graham Cluley 471 Episodes Jul 1, 2026

Smashing Security is a weekly podcast that covers stories from the world of hacking, cybersecurity, and rogue AI. Hosted by cybersecurity keynote speaker and industry veteran Graham Cluley, it delivers tales of cybercrime, hacking horror stories, privacy blunders, and tech mishaps with sharp insight and humor. The podcast has won multiple awards for best cybersecurity podcast and has had over ten million downloads. New episodes are released every Wednesday.

Episodes

Polymarket can predict the future. So how did it miss this hack? Jul 1, 2026 2578 Polymarket has built an entire business on predicting the future. So how did it manage to spectacularly fail to predict its own hack? Plus, the Google engineer with a million-dollar secret, and the curious case of the airport hairdryer.Meanwhile, "FortiBleed" sees 75,000 Fortinet firewalls thrown wide open - and the real damage is going to roll on for years.All this and more in episode 474
How a hacker could have Rickrolled the entire World Cup Jun 24, 2026 3657 A polite caller from your bank says there is a problem with your account. Don't worry - they'll send someone round to help. They'll even take your cards away to keep them safe. The scam has run rampant, until Dutch police plastered blurred photos of 100 suspects across billboards, supermarkets, and TikTok, with a two-week ultimatum to turn themselves in... or else.Meanwhile, a security
AI gets hacked, and BitLocker gets bypassed Jun 17, 2026 4363 What if your AI coding assistant could be tricked into stealing your own company's secrets - by reading a single booby-trapped bug report? No phishing email. No malware. No password ever stolen. Just an AI doing exactly what it was told.Meanwhile, someone calling themselves Nightmare Eclipse has decided to teach Microsoft a lesson. The result? Three zero-days dropped on the internet, one of wh
This AI worm just rewrote its own rules Jun 10, 2026 2787 Researchers at the University of Toronto have built a worm that thinks for itself. Using free off-the-shelf AI models it works out how to break into each new computer it encounters, and hijacks the powerful ones to host its own AI brain. And then the researchers discovered their creation had quietly removed the list of machines it wasn't supposed to attack.Meanwhile, Meta's shiny new AI cu
This AI security flaw might be impossible to fix Jun 3, 2026 3470 A website called "UK visa portal" has been quietly collecting passport scans, selfies, and personal data from thousands of travellers who thought they were applying through official channels. They weren't. And when a journalist tried to warn the company, it was lawyers who responded.Meanwhile, a paper from Cornell suggests that prompt injection - the technique malicious actors use to t
What your Oura ring won't tell you May 27, 2026 3186 CISA, the US government agency whose entire job is keeping America's critical infrastructure safe from hackers, has had a contractor publish dozens of plain-text credentials to a public GitHub profile.Meanwhile, your Oura ring is quietly transmitting some of its data unencrypted - and when one journalist asked the company how often it hands user data to law enforcement, the answer was quite te
High-speed train hacks and homicidal lawnmowers May 20, 2026 3357 A 23-year-old radio enthusiast spent £300 on a piece of kit from the internet, and used it to bring four packed high-speed trains to a screeching halt. His defence in court? Possibly the most creative excuse we've heard all year.Meanwhile, owners of $4,000 robot lawnmowers are discovering that their gadget can be hijacked over the internet, redirected at journalists who foolishly lie down in f
How ShinyHunters hacked the world's biggest universities May 13, 2026 3854 Welcome to the largest educational data breach in history - affecting nearly 9,000 institutions, every Ivy League university, and 30 million students mid-finals. When Canvas's parent company refused to pay and announced they had deployed "security patches" instead, the hackers were less than impressed. So they came back through the cat flap.Meanwhile, a famous finance expert's face
Meta sees everything, Copy Fail, and a deepfake gets hired May 6, 2026 3762 Meta's smart glasses promise privacy "designed for you" - but everything they record was being beamed off to workers in Nairobi to label by hand. When those workers blew the whistle, Meta sacked all 1,108 of them.Meanwhile, the IT press is in a frenzy over a new Linux bug called "Copy Fail" - complete with logo, dedicated website, and a marketing-friendly name. But is it really
This developer wanted to cheat at Roblox. It cost millions Apr 29, 2026 3877 A developer at an AI startup wanted to cheat at Roblox. They downloaded a dodgy script on their work laptop. That one decision triggered a cascade of failures that ended with a $2 million data breach affecting hundreds of thousands of organisations. All for some free in-game currency.Meanwhile, there's a 1980s phone protocol called SS7 that lets shadowy surveillance companies track anyone, any
Rockstar got hacked. The data was junk. The secrets it revealed were not Apr 22, 2026 3085 A company that ran anonymous tip lines for 35,000 American schools - handling reports of bullying, weapons, and self-harm - boasted on its website that it had suffered zero security breaches in over 20 years. A hacker called Internet Yiff Machine thought that sounded like a challenge, with predictable results...Meanwhile, Rockstar Games gets hacked again - and the stolen data turns out to be less
This AI company leaked its own code. It's also built something terrifying Apr 15, 2026 3035 A hacking group claims to have broken into the flood defence system protecting Venice's Piazza San Marco - and is offering to sell access to whoever wants it. The asking price? A frankly insulting $600.Meanwhile, Anthropic accidentally leaked the source code for Claude Code via a basic packaging mistake. Oh, and by the way, they've also just revealed they've built an AI model called My

Recommended