Graham Cluely Security Blog

Subscribe to Graham Cluely Security Blog feed Graham Cluely Security Blog
Cybersecurity expert & keynote speaker
Updated: 34 sec ago

Smashing Security podcast #398: Fake CAPTCHAs, Harmageddon, and Krispy Kreme

Thu, 12/19/2024 - 10:43am
This week, we delve into the dark world of fake CAPTCHAs designed to hijack your computer. Plus, the AI safety clock is ticking down – is doomsday closer than we think? And to top it off, we uncover the sticky situation of Krispy Kreme facing a ransomware attack. All this and more is discussed in the latest jam-packed edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley of "The AI Fix" podcast.
Categories: Graham Cluely

It’s time to stop calling it “pig butchering”

Wed, 12/18/2024 - 8:48am
Online romance and investment scams are painful enough without its victims being described as "pigs." Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

The AI Fix #29: AI on OnlyFans, and the bot that wants to be a billionaire

Tue, 12/17/2024 - 3:53pm
In episode 29 of The AI Fix, an AI company makes the bold step of urging us to "stop hiring humans", Graham is wrong about GB AI, parents prepare their kids for the imminent Moxie-mageddon, Google releases Gemini 2.0, and a robot is found dead at work and nobody knows why. Graham inspects the AI Miss World competition for research purposes and wonders if our hosts should start an OnlyFans, and Mark meets an "evolving" AI that wants to be a billionaire. All this and much more is discussed in the latest edition of "The AI Fix" podcast by Graham Cluley and Mark Stockley.
Categories: Graham Cluely

Rydox cybercrime marketplace seixed by law enforcement, suspected admins arrested

Mon, 12/16/2024 - 8:27am
Rydox, an online marketplace used by cybercriminals to sell hacked personal information and tools to commit fraud, has been seized in an international law enforcement operation and its suspected administrators arrested. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

Doughnut orders disrupted! Krispy Kreme suffers hack attack

Thu, 12/12/2024 - 10:38am
Krispy Kreme, the dispenser of delectable doughnuts, says that it suffered a cyber attack at the end of last month which saw its IT systems compromised and has disrupted online orders in parts of the United States. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

27 DDoS-for-hire services disrupted in run-up to holiday season

Thu, 12/12/2024 - 9:08am
Operation PowerOFF has disrupted what was anticipated to be a surge of distributed denial-of-service (DDoS) attacks over the Christmas period by taking over two dozen "booter" or "stresser" websites offline. Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely

Smashing Security podcast #397: Snowflake hackers, and under the influence

Wed, 12/11/2024 - 7:34pm
A Canadian man is arrested in relation to the Snowflake hacks from earlier this year - after a cybersecurity researcher managed to track his identity, and a cryptocurrency-trading Instagram influencer is in trouble with the law. All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Categories: Graham Cluely

“CP3O” pleads guilty to multi-million dollar cryptomining scheme

Tue, 12/10/2024 - 3:29pm
A man faces up to 20 years in prison after pleading guilty to charges related to an illegal cryptomining operation that stole millions of dollars worth of cloud computing resources. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

3AM ransomware: what you need to know

Tue, 12/10/2024 - 12:31pm
The 3AM ransomware first emerged in late 2023. Like other ransomware, 3AM exfiltrates victims' data (demanding a ransom is paid) and encrypts the copies left behind. Here's what you need to know. Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely

The AI Fix #28: Robot dogs with bombs, and who is David Mayer?

Tue, 12/10/2024 - 10:02am
In episode 28 of The AI Fix, the new version of ChatGPT does a surprisingly good job of telling Mark how to defend himself from a flame thrower-wielding robot dog in his living room, Graham loses 30,000 robots on the head of a pin, our hosts meet a human washing machine from the fifties, and Dr Who finds a new way to get worse. Graham wonders if teaching robot dogs to drop bombs is a good idea, and Mark meets ChatGPT's answer to Voldemort: David Mayer. All this and much more is discussed in the latest edition of "The AI Fix" podcast by Graham Cluley and Mark Stockley.
Categories: Graham Cluely

Russian money-laundering network linked to drugs and ransomware disrupted, 84 arrests

Thu, 12/05/2024 - 11:43am
The UK's National Crime Agency (NCA) has revealed details of Operation Destabilise, a years-long international law enforcement investigation into a giant Russian money laundering enterprise that handled billions of dollars for drug traffickers and ransomware gangs worldwide. Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely

Smashing Security podcast #396: Dishy DDoS dramas, and mining our minds for data

Thu, 12/05/2024 - 6:16am
A CEO is arrested for turning satellite receivers into DDoS attack weapons! Then, we'll journey into the world of bossware and "affective computing" and explore how AI is learning to read our emotions – is this the future of work, or a recipe for dystopia? All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Categories: Graham Cluely

AI chatbot startup WotNot leaks 346,000 files, including passports and medical records

Wed, 12/04/2024 - 1:26pm
Wotnot, An Indian AI startup that helps businesses build custom chatbots, has leaked almost 350,000 sensitive files after the data was left unsecured on the web. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

Ransomware-hit vodka maker Stoli files for bankruptcy in the United States

Wed, 12/04/2024 - 9:45am
Stoli Group USA, the US subsidiary of vodka maker Stoli, has filed for bankruptcy – and a ransomware attack is at least partly to blame. The American branch of Stoli, which imports and distributes Stoli brands in the United States, as well as the Kentucky Owl bourbon brand it purchased in 2017, was hit by a ransomware attack in August 2024. Learn more in my article on the Exponential-e blog.
Categories: Graham Cluely

Tech support scams leverage Google ads again and again, fleecing unsuspecting internet users

Wed, 12/04/2024 - 5:32am
It's not a new technique, but that doesn't mean that cybercriminals cannot make rich rewards from SEO poisoning. Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely

The AI Fix #27: Why is AI full of real-life Bond villains?

Tue, 12/03/2024 - 10:43am
In episode 27 of The AI Fix, robots catch a ball, lead a revolt, and enjoy a juicy steak. Or do they? Graham struggles with a Micro USB cable, a student struggles with a school’s anti-AI rules, and OpenAI’s Sora video generation AI is leaked by hacktivists. Graham circles back into an outside-the-box deep-dive where he synergises the low-hanging paradigm shift on a Zoom call with himself, and Mark wonders why we’re suddenly awash with real-life Bond villains. All this and much more is discussed in the latest edition of “The AI Fix” podcast by Graham Cluley and Mark Stockley.
Categories: Graham Cluely

North Korean hackers masquerade as remote IT workers and venture capitalists to steal crypto and secrets

Tue, 12/03/2024 - 5:48am
In itslust for stealing cryptocurrency and sensitive information, North Korean hackers are disguising themselves as remote IT workers, recruiters, and even venture capitalists. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

No guarantees of payday for ransomware gang that claims to have hacked children’s hospital

Tue, 12/03/2024 - 5:44am
What is the point of INC Ransom's attack on Alder Hey? They are not likely to be paid, and the attack on a children's hospital only increases the chances that they will one day find their collars felt by law enforcement. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

UK hospital, hit by cyberattack, resorts to paper and postpones procedures

Fri, 11/29/2024 - 5:09am
A British hospital is grappling with a major cyberattack that has crippled its IT systems and disrupted patient care. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

Mimic ransomware: what you need to know

Thu, 11/28/2024 - 11:22am
What makes Mimic particularly unusual is that it exploits the API of a legitimate Windows file search tool ("Everything" by Voidtools) to quickly locate files for encryption. Find out more about the threat in my article on the Tripwire State of Security blog.
Categories: Graham Cluely

Pages